[fw-wiz] New to Cisco PIX/ ASA
- From: "Keith A. Glass" <salgak@xxxxxxxxxxxxx>
- Date: Wed, 1 Aug 2007 18:41:53 -0400
I've managed Gauntlets, Checkpoints, Netscreens, and SonicWalls in the past.
I'm a bit confused with the in and outs of the ASA firewalls.
I'm setting up at HA pair, my Eth0/0 is my interior interface, trust level
100, Eth 0/1 and 0/2 are my IP and State heatbeats, and Eth 1/0 is my
external interface, trust level 1.
Am I correct in my understanding that if I want two-way traffic, traffic is
not blocked to a lower trust level, so I need only write a rule to pass the
traffic between the endpoints from the external interface to the internal
interface, and the reply traffic is taken care of ?? Or do I have to write
a reverse rule, from the internal interface to the external as well ???
_______________________________________________
firewall-wizards mailing list
firewall-wizards@xxxxxxxxxxxxxxxxxxxxx
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
- Follow-Ups:
- Re: [fw-wiz] New to Cisco PIX/ ASA
- From: Paul Melson
- [fw-wiz] IPv6 support in firewalls
- From: Dave Piscitello
- [fw-wiz] CSA Question
- From: Carric Dooley
- Re: [fw-wiz] New to Cisco PIX/ ASA
- From: ArkanoiD
- Re: [fw-wiz] New to Cisco PIX/ ASA
- Prev by Date: Re: [fw-wiz] Cisco FWSM/ASA Question
- Next by Date: Re: [fw-wiz] Check Point NG FP3 HF2 on Solaris 5.8
- Previous by thread: [fw-wiz] Check Point NG FP3 HF2 on Solaris 5.8
- Next by thread: Re: [fw-wiz] New to Cisco PIX/ ASA
- Index(es):
Relevant Pages
|
|
