Solved

No ACLs in router if firewall is behind it?

Posted on 2009-05-04
1
232 Views
Last Modified: 2012-05-06
We have a remote site with a T1 to the internet.
They have an 1841 router with an ASA behind it.

I noticed the router itself has no ACLs on it to protect it from the outside world. But the ASA is properly configured.  I understand that your firewalls should be doing the packet filtering, but is this best practices? We do have several tunnels terminating in the ASA
0
Comment
Question by:dissolved
1 Comment
 
LVL 3

Accepted Solution

by:
yegs2000 earned 500 total points
ID: 24300028
well, for good measure, if you remotely adminster the device (router), I would recommend maybe filter telnet and traffic destined to the device. Just make sure that it is locked down, so outside intruders cannot get into the router. Make sure all management options are locked down only to you.

Other than that, it should be fine to let the ASA do the rest of the work.

-yegs
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
patch panel cable management -- recommendation ? 2 117
Fiber Patch Panel 6 68
NAS with google authentication 6 167
Cisco 5508 WLC software upgrade 2 118
This article will step through configuring a SonicWALL appliance to utilize an internal DHCP server for Global VPN Client (GVC) hosts.  There are times when using an external (external to the SonicWALL) DHCP server, such as Windows Servers, isn’t pr…
This article is a how to to configure a UCS Ethernet-uplink portchannel via the console. It is easy to do and can be done quite quickly. In certain versions of the UCS manager the portchannel has issues coming up and this is a workaround. I am…

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question