Hi guys,
I'm newbie in a FW matters, I need to apply some filters between our corporate network and our industrial networks (FTP traffic and some special ports for telnet matters). For that I'm using an ASA 5510 building a etherchannel with 3 of its Fa interfaces, over the main portchannel I set the corporate network access with a higher security level and the I created a few sub interfaces with a different VLAN each one and lower security level.
Then I used some NAT configuration in order to go from the industrial network to some specific FTP server in the corporate network.
When I try to use an ACL just to permit the FTP traffic inbound over the corporate interface all traffic is dropped by the global implicit rule to deny any to any traffic.
Why can I do to enable the ftp traffic?
Regards,
G.Fuentes
Sent from Cisco Technical Support iPhone App