Monday, August 17, 2020

Cisco ASA NAT and ACL order ASDM 9.1(7)

Is the packet trace option in Cisco ASA, ASDM(or cli) is correct for how packet flows ?

Meaning:

- Packet coming from outside to inside

  1. ACL
  2. UN-NAT
  3. ROUTE LOOKUP
  4. ACL
  5. NAT...

- Packet coming from inside to outside

  1. ACL
  2. ROUTE LOOKUP
  3. ROUTE LOOKUP
  4. ACL
  5. NAT...

- Between DMZ s'

  1. UN-NAT
  2. ROUTE LOOKUP
  3. ACL
  4. NAT...


at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)