If it is return traffic that needs to be allowed then inspection is a solution of course. Besides from that I can only see the solution to change security-level. What about giving the interfaces the same level and add same-security permit-inter-interface? Only if there is no acl on either interface already of course.
/J 2010/7/1 Mack, David A (Dave) <[email protected]> > Inspection? > > > > Dave > > > > *From:* [email protected] [mailto: > [email protected]] *On Behalf Of *Terry Little > (terlittl) > *Sent:* Thursday, July 01, 2010 1:15 PM > *To:* CCIE Sec > *Subject:* [OSL | CCIE_Security] ASA outside interface question > > > > If an acl is not an option to allow traffic in the outside interface of an > ASA is there any way to open a whole for udp traffic to pass through the ASA > from outside to inside?? > > > > Terry Little > > [email protected] > Phone: +1 425 468 1057 > > Mobile: +1 425 894 4109 > > Cisco Systems, Inc. > > Network Consulting Engineer > World Wide Security Services Practice > Cisco.com - http://www.cisco.com > > > > This email may contain confidential and privileged material for the sole > use of the intended recipient. Any review, use, distribution or disclosure > by others is strictly prohibited. If you are not the intended recipient (or > authorized to receive for the recipient), please contact the sender by reply > email and delete all copies of this message. > > For corporate legal information go to: > http://www.cisco.com/web/about/doing_business/legal/cri/index.html > > > > _______________________________________________ > For more information regarding industry leading CCIE Lab training, please > visit www.ipexpert.com > > -- ------- Jimmy Larsson Ryavagen 173 s-26030 Vallakra Sweden http://blogg.kvistofta.nu -------
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
