Advertisement

06.17.2008 at 06:53PM PDT, ID: 23493898
[x]
Attachment Details

turning off all inspection --- ASA 5540

Asked by stielinc in Cisco PIX Firewall

Tags: Cisco, ASA, 7.2(1)

For troubleshooting purposes, I'd like to make my ASA 5540 7.2 completely wide open, no inspection, no ACL etc.  Allowing everything via ACL is no problem.    But i'm curious about turning off the default packet inspection.   Am I right that a 'no service-policy global_policy global' is all I need?


class-map inspection_default
 match default-inspection-traffic!
!
policy-map type inspect dns preset_dns_map
 parameters
  message-length maximum 512
policy-map global_policy
 class inspection_default
  inspect dns preset_dns_map
  inspect ftp
  inspect h323 h225
  inspect h323 ras
  inspect netbios
  inspect rsh
  inspect esmtp
  inspect sqlnet
  inspect sunrpc
  inspect xdmcp
  inspect pptp
  inspect sip
  inspect tftp
!
service-policy global_policy global
Start Free Trial
[+][-]06.17.2008 at 08:25PM PDT, ID: 21809772

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]06.17.2008 at 08:50PM PDT, ID: 21809869

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]06.17.2008 at 08:54PM PDT, ID: 21809885

View this solution now by starting your 7-day free trial. Setting up your free trial is quick, easy, and secure. We will return you to this solution, unlocked, when you're done.

 

About this solution

Zone: Cisco PIX Firewall
Tags: Cisco, ASA, 7.2(1)
Sign Up Now!
Solution Provided By: batry_boy
Participating Experts: 1
Solution Grade: A
 
 
 
Loading Advertisement...
20080716-EE-VQP-32 / EE_QW_2_20070628