Cisco ASA 5510 Firewall Rules
Posted on 2009-04-06
I have a Cisco 5510 firewall and need some advice on configuration. I have plenty of protection for outside coming in, but only the two implicit default rules for inside going out. I played around with blocking IP addresses from accessing the internet and succeeded, but obviously the implicit rules go away and I need to create an allow any any in order for it to work. Is the allow any any the SAME as the implicit allow any to any lesser secured network? I would love to block a whole chunk of IP's from accessing the outside world, but I don't want to create security holes in the process. Also, what are some ideas for other rules for my users going to the outside world. It seems like having these two default rules still won't protect a user from establishing a cummunication to an unwanted source. One last question, there is an option for direction for each inside and outside rule sets, could I have an example in which you would utilize this?