• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 374
  • Last Modified:

Cisco ASA access list any any

I need an access list from one subnet like 192.168.10.0 to 192.168.20.0 any any. How can I create that?

thanks in advance
0
wayy2be
Asked:
wayy2be
  • 5
  • 4
1 Solution
 
Jan SpringerCommented:
What version is the software and to which interface should it be applied (and is there an existing access list for that interface)?
0
 
wayy2beAuthor Commented:
The version is 9.0(1). The interface I want to permit the traffic on is coming from outside to inside and I already have an access list like this:

access-list permit-in extended permit any host 192.168.20.0

However certain connections don't work like RDP.
0
 
Jan SpringerCommented:
access-list permit-in extended permit tcp any host  192.168.20.0 3389
access-group permit-in in interface outside
0
Identify and Prevent Potential Cyber-threats

Become the white hat who helps safeguard our interconnected world. Transform your career future by earning your MS in Cybersecurity. WGU’s MSCSIA degree program was designed in collaboration with national intelligence organizations and IT industry leaders.

 
wayy2beAuthor Commented:
I need to allow any not just 3389
0
 
Jan SpringerCommented:
access-list permit-in extended permit ip any 192.168.20.0 255.255.255.0
access-group permit-in in interface outside
0
 
wayy2beAuthor Commented:
One more question. Is it possible to tell if the connection on the outside interface is maxxed out? I want to see if I have a bottleneck due to bandwidth.
0
 
Jan SpringerCommented:
If you are referring to interface stats, "sh int <interface>"
0
 
wayy2beAuthor Commented:
What I mean is how can I tell if an interface is at 100% utilization....
0
 
Jan SpringerCommented:
If you want to track it, you'll need an SNMP tool like Cacti, MRTG or PRTG to grab the interface stats.
0

Featured Post

NFR key for Veeam Backup for Microsoft Office 365

Veeam is happy to provide a free NFR license (for 1 year, up to 10 users). This license allows for the non‑production use of Veeam Backup for Microsoft Office 365 in your home lab without any feature limitations.

  • 5
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now