Hi Naresh, Let's say you have 2 interfaces 1. inside - where your LAN lives (internal users) 2. outside - the interface towards the Internet If you configure an access list like: ---------------------------------------------- access-list inside_in ...

Hi Naresh, What do you mean when you say "sites" - websites or specific networks? You could block or allow certain traffic based on protocols (http, https, ftp etc.), based on the source and destination ip/networks using Access Control Lists. From...

Hi Steve, NAT exemption does not take any ports into consideration. That's why you should not include protocols and ports into the ACL. "Do not specify the real and destination ports in the access list; NAT exemption does not consider the ports. NA...

Hi, The EOL of the version 9.1 has not been announced, so new  Maintenance releases might be expected to be issued. You could be updated about the EOL specific details on: http://www.cisco.com/c/en/us/products/security/asa-5500-series-next-generatio...

Hi, You could also use the ASDM. Tools -> Connamd Line Interface Then run the command "show version". Best regards!