Restore implicit rule to permit to any less secure network

Posted on 2009-02-11
Last Modified: 2012-05-06
I have been setting up an ASA 5505 using mostely the ASDM (dont know much about command line). I did load a config from a previous setup that worked well and everything was great except I can not web browse.  I looked at the two configs and can not see any major differences. When I look in the security section of the ASDM I do see that the one that works has an implicit rule to permit access to any less secure network.  This is missing from the one I loaded the config to.  I dont see any way to add this rule in the ASDM and can not even find it looking at the configs from a sh run.  I am open to either path to add this back.  I like the ASDM but I know the more command line time I get the better.
Question by:GSIAdmin
    LVL 43

    Expert Comment

    Can you post a "show run"?
    LVL 6

    Accepted Solution

    The implicit rule to permit access to any less secure network is should be active by default. This is because inside interface has higher security level and lower on the outside interface.

    If you'd like to allow browsing through the clients on the inside interface, make sure you have nat and acl, will be something like:

    nat (inside) 1
    nat (inside) 1 (allow inside clients to use outside interface when go out to internet)

    also acl on outside interface
    access-list outside_access_in extended permit ip any outside/24


    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Looking for New Ways to Advertise?

    Engage with tech pros in our community with native advertising, as a Vendor Expert, and more.

    Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
    Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
    Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
    Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…

    794 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    18 Experts available now in Live!

    Get 1:1 Help Now