Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
230
Views
0
Helpful
1
Replies

Cisco ASA Port vs Object in Access Ruloes

Go to solution
Mokhalil82
Level 4
Level 4

‎06-26-2015 03:48 AM - edited ‎03-11-2019 11:11 PM

Hi

This might be an easy one but just confuses me slightly as I am just starting out configuring asa firewalls. 

When configuring an access rule, what different does it make for the source, if I choose the INSIDE interface or an object group which defines all the inside networks. 

 

Thanks

 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎06-26-2015 07:17 AM

The access list entries should use a group. You would only use the interface itself in an access list entry if you were controlling traffic to the interface itself.

Once you build an access list on an ASA, you then apply it to the necessary interfaces using the access-group command. i.e something like:

access-group inside_access_in_1 in interface inside

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎06-26-2015 07:17 AM

The access list entries should use a group. You would only use the interface itself in an access list entry if you were controlling traffic to the interface itself.

Once you build an access list on an ASA, you then apply it to the necessary interfaces using the access-group command. i.e something like:

access-group inside_access_in_1 in interface inside
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card