Ping a Specific Port

Question

Corey S.

Asked: 2009-09-24 13:31:12 +0800 CST2009-09-24 13:31:12 +0800 CST 2009-09-24 13:31:12 +0800 CST

Why do they call it "inside_access_in"?

772

I am looking at some configurations for Cisco FWSM devices and I notice a common notation for an ACL name called inside_access_in. But I am commonly seeing ACEs that are for allowing internal machines to access specific resources on the "outside".

My question is this: Why do they call it inside_access_in? Why not call it inside_access_out?

2 Answers

Voted

Evan Anderson · Answer 1 · 2009-09-24T13:35:01+08:00

Best Answer

Evan Anderson

2009-09-24T13:35:01+08:002009-09-24T13:35:01+08:00

The ACL you're talking about is typically applied to traffic coming into the interface named "inside". The ACL is used to limit traffc that's bound for the "outside", but often it's applied with the command:

access-group inside_access_in in interface inside

So, you're limiting outbound access by limiting the traffic that can come into the firewall from the machines attempting to access the outside! >smile<

5

GregD · Answer 2 · 2009-09-24T13:34:11+08:00

GregD

2009-09-24T13:34:11+08:002009-09-24T13:34:11+08:00

Because it's the name of the interface "inside" that you're pointing at. In other words you're going "in" to the inside interface.

2

Why do they call it "inside_access_in"?

Ping a Specific Port

What port does SFTP use?

Resolve host name from IP address

How can I sort du -h output by size

Command line to list users in a Windows Active Directory group?

What's the command-line utility in Windows to do a reverse DNS look-up?

How to check if a port is blocked on a Windows machine?

What port should I open to allow remote desktop?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?