Hello Krishna-
Take a look at the link below that I think will help you configure control-plane based ACL for your Firewall:
http://www.cisco.com/c/en/us/td/docs/security/asa/asa95/configuration/firewall/asa-95-firewall-config/access-rules.html
So by adding the control-plane keyword to the ACL entry, the traffic inspection applies to traffic destined to the ASA. Without the control-plane keyword, the ACL entries will apply to traffic traversing through the ASA.
Also, keep in mind that ASA based control-plane ACLs (telnet, ssh, http, etc) will override the control-plane ACL applied on the interface.
I hope this helps!
Thank you for rating helpful posts!