Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1099
Views
0
Helpful
0
Replies

CAN someone please help CISCO ASA5506 not secure, NOT blocking VLAN access

JohnHeritage54206
Level 1
Level 1

‎09-22-2020 03:43 PM - edited ‎09-22-2020 04:04 PM

Annotation 2020-09-22 225741.jpg

 Ok would like some help

 

have added my access list

 

yet even with my IP deny rules

 

I can still access each vlan by typing from one vlan the IP addresses of computers on the other vlan 

 

and bang bang bang up come all the shares erh??

 

how can this be ??

 

I only have deny rules for the VLAN 1 / VLAN7   the ping stops for each vlan / The ftp stops for each vlan

 

but if i type the computer ip address for that vlan on a different vlan, I see and can access all the shares on a different vlan ?

 

how can I block this, this is not good and one big security risk

 

 

so what i am saying, with my various vlan deny rules in place, why do I still access various computer across different vlans, they should be blocked

 

the IP deny rule should BLOCK anything ip related ... so me typing in a IP address should be blocked ?? no?

 

by being on vlan 7 (10.10.2.31) and typing on that computer \\192.168.1.31 I get all the share up from the server on VLAN 1 (192.168.2.31)  ??? why does the IP deny rule not block this action

 

this is crazy

 

I do want to be able to access across different vlans but when the IP deny rules are active I want to block which it is NOT

 

 

thanks in advance for any help in locking down the firewall

 

 

thanks

 

Annotation 2020-09.jpg

Preview file
336 KB
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card