«

»

Aug 21

How to permit traffic on interfaces with the same security level on Cisco ASA

Categories:

Cisco ASA/FWSM, Firewall

by admin

By default Cisco ASA design does not allow traffic to flow between two interfaces having the same security level not sourced and destined on the same interface. To ‘fix’ this issues there are two commands you can use.

Configuration example:

ASA# conf t
ASA(config)# same-security-traffic permit ?
configure mode commands/options:
  inter-interface  Permit communication between different interfaces with the same security level
  intra-interface  Permit communication between peers connected to the same interface
!
ASA(config)# same-security-traffic permit inter-interface
ASA(config)# same-security-traffic permit intra-interface
!
ASA(config)# end
ASA# wr mem

Follow me!

This post has no tag

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>