Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2270
Views
10
Helpful
5
Replies

Access rule is not working.

Go to solution
AlfredoA
Level 1
Level 1

‎06-20-2018 12:50 PM - edited ‎02-21-2020 07:54 AM

So, I have the ASA 5505 Firewall. I generate an ACL to block three IP. Those IP are from outside and are generating fraffic with an internal server. 

reglas.JPG

After aome hours I still get traffic from those IPs as you can see in the nex image:

pie.JPG

 

 

The IP 181.174.99.146 should be blocked, but it is not. I will apreciate any explanation so I can understand why is this happening.

 

Sorry about my english.

 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎06-20-2018 01:14 PM

I believe if the the traffic initiated from inside it still work, but the source coming from outside it should block.

 

depends on how you configured, since its object we can not see what is inside that group

 

better watch on Monitoring see is that allowed from outside to inside or inside to outside.

 

 * After configure rule have you saved and published the config.

 

BB

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

5 Replies 5

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎06-20-2018 01:14 PM

I believe if the the traffic initiated from inside it still work, but the source coming from outside it should block.

 

depends on how you configured, since its object we can not see what is inside that group

 

better watch on Monitoring see is that allowed from outside to inside or inside to outside.

 

 * After configure rule have you saved and published the config.

 

BB

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Go to solution
AlfredoA
Level 1
Level 1
In response to balaji.bandi

‎06-20-2018 01:37 PM

Actually I think I get it now. It was working coming from outside. The problem is the traffic initiated from inside. I'll add an ACL outside (outgoing rules) to make it work.

Thanks.
0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to AlfredoA

‎06-20-2018 01:53 PM

Yes good catch. let me know how to goes.

 

BB

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
AlfredoA
Level 1
Level 1
In response to balaji.bandi

‎06-20-2018 01:57 PM

 

I've created new rules:  

 

nuevas reglas.JPG

 

Do yo think I need a rule: permit: any - any in the outside interface? as I did in the inside interface?

0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to AlfredoA

‎06-20-2018 02:30 PM

Inside to outside is ok, but outside (un-trusted traffic coming in always bad - until there is a requirement for specific rule).

 

To make Granular and best practice always permit what required, and rest let it go to deny deny in the last rule

on both Inside and outside.

 

BB

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card