[c-nsp] Cisco ASA return traffic with explicit deny on outside interface
Roland Dobbins
rdobbins at arbor.net
Thu Oct 9 16:23:54 EDT 2014
On Oct 10, 2014, at 2:56 AM, Pete Lumbis <alumbis at gmail.com> wrote:
> Existing connections skip the ACL check.
Is there a knob/stanza for this? If so, is 'permit established' the default?
----------------------------------------------------------------------
Roland Dobbins <rdobbins at arbor.net> // <http://www.arbornetworks.com>
Equo ne credite, Teucri.
-- Laocoön
More information about the cisco-nsp
mailing list