Recently I have a traffic denied problem with Cisco ASA 5540 after adding a new and only ACL " permit ip any any" at one of the "OUT" interface. All interfaces on the ASA already have an exsiting ACL on the "in". Traffic was normal until that "harmless" rule was added in the "OUT" interface. Once that rule was remove, traffic flow was back to normal.
Can anyone help to advise on the possible cause of this problem?
Perhaps we should not have ACL apply in the "IN" and "OUT" of the same interface??