Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
871
Views
0
Helpful
0
Replies

Suspicious ACL Rule on Branch Office.

networkguy87107
Level 1
Level 1

‎04-14-2020 09:35 AM - edited ‎04-14-2020 09:36 AM

Hello cisco experts,

 

I am new to the networking field (ccna level) and I am hoping to get some feedback from the pros. I just started working for a company with two offices running a remote site to site vpn tunnel. I started my new job with almost no network documentation from the previous administrator but I was a little bit stumped when I can came across the following ACL configuration. The rule in question is: outside rule 1 which appears in my mind to be a giant security hole coming in from our outside network. Looking in the ASDM syslog messages on the first page, I do see syslog messages showing inbound tcp connections getting denied for flags SYN. I can't help but wonder if these alerts are just getting generated by the threat detection and there is a major problem with that ACL. Sorry for the noob question but this ACL looks very suspect to me. The following screenshot is from the ASA at our remote location. I greatly appreciate any help on this.

 

 

wtf.PNG

0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card