Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
999
Views
0
Helpful
1
Replies

cisco asa security levels

Go to solution
cisco8887
Level 2
Level 2

‎05-25-2016 06:35 AM - edited ‎03-12-2019 12:48 AM

Hi All,


can someone please explain how security levels work?

I know from lower to higher is not allowed and read that there is implicit deny on all lower level to higher level.

When I need to go from lower level to higher level , why would I apply the acl on lower level internal rather than higher level external?

If you have any documents that explains this in detail, it will be much appreciated.

Thanks

Aram

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Aditya Ganjoo
Cisco Employee
Cisco Employee

‎05-25-2016 07:26 AM

Hi,

The reason we need to apply the ACL on the lower security interface is because the traffic would hit the lower security interface first and then traverse the ASA engine.

You can check this link:

https://supportforums.cisco.com/discussion/11539041/asa-firewall-interface-security-levels-and-access-lists

Regards,

Aditya

Please rate helpful posts and mark correct answers.

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Aditya Ganjoo
Cisco Employee
Cisco Employee

‎05-25-2016 07:26 AM

Hi,

The reason we need to apply the ACL on the lower security interface is because the traffic would hit the lower security interface first and then traverse the ASA engine.

You can check this link:

https://supportforums.cisco.com/discussion/11539041/asa-firewall-interface-security-levels-and-access-lists

Regards,

Aditya

Please rate helpful posts and mark correct answers.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card