oasisuk
asked on
ASA-5510 ACL
I have a cisco asa5510 running software version 8.2(5), security Plus licence and trying to configure for access from outside on a public ip.
The interface public ip is working and if i nat using this i have no problem and OUTSIDE acl is being hit.
But if i add another public ip in our range, the acl is not being hit.
interface Ethernet0/1
shutdown
nameif outside
security-level 0
ip address x.x.x.120 255.255.255.224
access-list OUTSIDE extended permit ip any host x.x.x.120 log
access-list OUTSIDE extended permit ip any host x.x.x.123
show access-list
access-list OUTSIDE line 1 extended permit ip any host x.x.x.120 log informational interval 300 (hitcnt=392) 0x537eb0dc
access-list OUTSIDE line 2 extended permit ip any host x.x.x.123 (hitcnt=0) 0x476bce13
Can anyone see where i'm going wrong? Thanks
The interface public ip is working and if i nat using this i have no problem and OUTSIDE acl is being hit.
But if i add another public ip in our range, the acl is not being hit.
interface Ethernet0/1
shutdown
nameif outside
security-level 0
ip address x.x.x.120 255.255.255.224
access-list OUTSIDE extended permit ip any host x.x.x.120 log
access-list OUTSIDE extended permit ip any host x.x.x.123
show access-list
access-list OUTSIDE line 1 extended permit ip any host x.x.x.120 log informational interval 300 (hitcnt=392) 0x537eb0dc
access-list OUTSIDE line 2 extended permit ip any host x.x.x.123 (hitcnt=0) 0x476bce13
Can anyone see where i'm going wrong? Thanks
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER