Showing results for 
Search instead for 
Did you mean: 

cisco asa packet tracer shows wrong ACL

Level 4
Level 4

Hi All,
We have cisco asa with version 9.8.3
While checking the packet tracer from outside source public ip to a NAT ip of a server inside the network, I could see that ACL match is on a rule where the source segments are all private.

So I decided to configure a rule on top of the ACL list with source as Any and destination Pvt ip and destination port. It worked perfectly.

My question is if I remove the deny rule, the packet tracer is still showing the same rule which do not have the source segment as my public ip (all are private).

I could see a bug CSCvb92548 in earlier version 9.1(7.11) 9.6(2.2), but current version is 9.8.3

pls help.

0 Replies 0
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Review Cisco Networking products for a $25 gift card