Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
415
Views
0
Helpful
2
Replies

Default class inspection policy

Go to solution
mahesh18
Level 6
Level 6

‎04-04-2013 06:10 PM - edited ‎03-11-2019 06:23 PM

Hi Everyone,

Need to know if default class inspection policy matches the incoming or outging traffic flowing through the ASA?

Example when i ping from PC  connecting to the ASA  to outside world will then it will match icmp traffic entering the ASA  then ICMP reply coming

to outside interface?

Thanks

MAhesh

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
lcambron
Level 3
Level 3

‎04-04-2013 07:30 PM

Hello,

The ASA is stateful in both directions, so the policy matches incoming and outgoing traffic.

What happens is that you also have security levels, so from high to low it is allow but from low to high it will be deny unless you configure an ACL.

Regards,

Felipe.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
lcambron
Level 3
Level 3

‎04-04-2013 07:30 PM

Hello,

The ASA is stateful in both directions, so the policy matches incoming and outgoing traffic.

What happens is that you also have security levels, so from high to low it is allow but from low to high it will be deny unless you configure an ACL.

Regards,

Felipe.

0 Helpful

Go to solution
mahesh18
Level 6
Level 6
In response to lcambron

‎04-04-2013 07:40 PM

Hi Felipe,

Many thanks for Prompt reply.

ASA is interesting world.

Regards

MAhesh

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card