cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1254
Views
0
Helpful
0
Replies

cisco asa packet tracer shows wrong ACL

secureIT
Enthusiast
Enthusiast

Hi All,
We have cisco asa with version 9.8.3
While checking the packet tracer from outside source public ip to a NAT ip of a server inside the network, I could see that ACL match is on a rule where the source segments are all private.

So I decided to configure a rule on top of the ACL list with source as Any and destination Pvt ip and destination port. It worked perfectly.

My question is if I remove the deny rule, the packet tracer is still showing the same rule which do not have the source segment as my public ip (all are private).

I could see a bug CSCvb92548 in earlier version 9.1(7.11) 9.6(2.2), but current version is 9.8.3

pls help.

0 Replies 0
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers