Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
797
Views
0
Helpful
1
Replies

ASA and enable traffic between two interfaces with same security level

Go to solution
Phil Bradley
Level 4
Level 4

‎02-04-2018 12:07 PM - edited ‎02-21-2020 07:17 AM

I have multiple DMZ servers in seperate interfaces on my ASA with the same security level defined. I notice that if I do not check the box "enable traffic between two interfaces with same security level", then I cannot communicate between two servers in the seperate interfaces even if I have an ACL rule allowing them to communicate. Do you still have to have an ACL defined in order for these to communicate even if you have the box checked above? I hope this is the case since I want all of the DMZ networks at the same security level but only want them to be able to communicate if I have an ACL defined.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Karsten Iwen
VIP
VIP

‎02-04-2018 01:58 PM

Thats exactly the way to go. You need the checkbox to let them communicate, but you also need an ACL to control what these systems are allowed to do.

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Karsten Iwen
VIP
VIP

‎02-04-2018 01:58 PM

Thats exactly the way to go. You need the checkbox to let them communicate, but you also need an ACL to control what these systems are allowed to do.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card