Cisco ASA Series Cli Configuration Manual page 458
Software version 9.0 for the services module
Hide thumbs
Also See for ASA Series:
- Configuration manual (429 pages) ,
- Getting started (31 pages) ,
- Mount and connect (12 pages)
Table of Contents
Advertisement
Licensing Requirements for Completing Interface Configuration in Routed Mode
section on page 1-16
The level controls the following behavior:
•
•
•
•
Dual IP Stack (IPv4 and IPv6)
The ASA supports the configuration of both IPv6 and IPv4 on an interface. You do not need to enter any
special commands to do so; simply enter the IPv4 configuration commands and IPv6 configuration
commands as you normally would. Make sure you configure a default route for both IPv4 and IPv6.
Licensing Requirements for Completing Interface
Configuration in Routed Mode
Cisco ASA Series CLI Configuration Guide
1-2
for more information.
Network access—By default, there is an implicit permit from a higher security interface to a lower
security interface (outbound). Hosts on the higher security interface can access any host on a lower
security interface. You can limit access by applying an access list to the interface.
If you enable communication for same security interfaces (see the
Communication" section on page
interfaces on the same security level or lower.
Inspection engines—Some application inspection engines are dependent on the security level. For
same security interfaces, inspection engines apply to traffic in either direction.
–
NetBIOS inspection engine—Applied only for outbound connections.
–
SQL*Net inspection engine—If a control connection for the SQL*Net (formerly OraServ) port
exists between a pair of hosts, then only an inbound data connection is permitted through the
ASA.
Filtering—HTTP(S) and FTP filtering applies only for outbound connections (from a higher level
to a lower level).
If you enable communication for same security interfaces, you can filter traffic in either direction.
established command—This command allows return connections from a lower security host to a
higher security host if there is already an established connection from the higher level host to the
lower level host.
If you enable communication for same security interfaces, you can configure established commands
for both directions.
Chapter 1
Completing Interface Configuration (Routed Mode)
1-16), there is an implicit permit for interfaces to access other
"Allowing Same Security Level
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
