Your best bet is to place the ASA into 'transparent' mode, and letting the traffic pass through it and be inspected on the way through.
To do this you need to first do the following command:
firewall transparent
Once in transparent mode, the firewall will no longer look like a hop in the packets journey, and you can set rules to allow/disallow traffic using access lists on the inside and outside interfaces, plus you can perform packet inspections using policy-map and inspects.
Hope that helps!
264 views
Usually answered in minutes!
×