On Thu, 13 Sep 2012, Joseph Jackson wrote:
Silly question - How come you are having to deny certain things, if
traffic from a lower security interface tries to access a higher
security interface unless its permit it should be denied by default.
Are you putting those deny statements in there jus
Silly question - How come you are having to deny certain things, if
traffic from a lower security interface tries to access a higher
security interface unless its permit it should be denied by default.
Are you putting those deny statements in there just to log the hits?
Also notice there is a deny
On Wed, 12 Sep 2012, Justin M. Streiner wrote:
A number of people have asked to see the ruleset, so I've posted it here:
http://www.cluebyfour.org/ipv6/
What I've posted is the IPv6 portion of the configuration for my test zone.
I see a number of people have viewed the config since I posted
A number of people have asked to see the ruleset, so I've posted it here:
http://www.cluebyfour.org/ipv6/
What I've posted is the IPv6 portion of the configuration for my test
zone.
jms
On Fri, 7 Sep 2012, Justin M. Streiner wrote:
This is as much of a general query as anything else. I'm j
This is as much of a general query as anything else. I'm just trying to get a
sense for how people are building default firewall rule sets on their ASAs.
I have a fairly detailed inbound and outbound default IPv6 firewall rule set
worked up, which I can share with people who are interested. S