3 Replies Latest reply: Apr 18, 2012 12:36 AM by TcpIp RSS

    ASA internal order of operations

    MIKIS

      Hello

       

      I was not able to find enough documentation about ASA's internal order of operation so after testing with packet-tracer I made 2 flow charts.

       

      I am open to any recommendations in order to fix/improve the 2 charts (for example I want to add the VPN encrypt/decrypt phases, but I haven't tested yet).

       

      I would also like to confirm the following lists:

      INSIDE -> OUTSIDE

      1. Route Lookup

      2. RPF (Antispoofing)

      3. ACL

      4. Source NAT

       

      OUTSIDE -> INSIDE

      1. RPF (Antispoofing)

      2. ACL

      3. UN-NAT (Destination NAT)

      4. Route lookup

       

      in-out.JPG

      out-in.JPG

      Thank you