Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
We performed our routine penetration testing, and performed a port scan. We just upgraded to a new ASA with a 9.8 version. We noticed that all of our ports were opened; we used NMAP externally. although we couldn't connect via a telnet test. (telnet ...
Scanning from outside. Using NMAP on outside interface public IP. And yes I have an explicit deny rule.
The tech sent me documentation on the feature. He said it is called "service resetoutbound"
It is noted here https://www.cisco.com/c/en/us/td/...
