USD ($)
$
United States Dollar
India Rupee
Your cart is empty
Empty notifications
Login Register

Access Lists

Lesson 8/10 | Study Time: 10 Min
Course: Cisco ASA VPN Lab Workbook for Practice
Access Lists

Task

● Configure R1 ip is 192.168.1.1/24 and R2 ip 192.168.2.1/24

● Configure ASA1 on e0 ip 192.168.1.10 nameif inside security level 100 and on e1 ip 192.168.2.10 nameif outside with security level 0

● Create an access-list for allowing traffic from lower to higher security level

● When you try to ping from R1 to R2 it should be successful

Explanation

By default behavior when you try to ping from higher security level to lower security level packet is allowed but the reply traffic is not allowed for this we can create an access-list or we can inspect ICMP traffic. In this task we are allowing the icmp traffic from lower to higher security Level

Configuration

R1


Default route from R1 towards ASA

R2

Default route from R2 towards ASA

SW02

Access-list on ASA

Result

Previous Lesson Next Lesson
Gautam Sharma

Gautam Sharma

Product Designer
★★★★★ 4.97
Faithful User
Expert Vendor
Golden Classes
King Seller
Fantastic Support
Loyal Writer
Profile

Class Sessions

1- Active Standby Failover 2- NAT 3- Manual NAT 4- MPF 5- Security Context 6- MPF Allowing BGP pass through network 7- DNS Doctoring 8- Access Lists 9- Modular Policy Framework Allowing only 2 consecutive session 10- MPF TCP Ideal timeout with reset