Skip navigation
Cisco Learning Home > CCIE Security Study Group > Discussions
1837 Views 3 Replies Latest reply: Apr 18, 2012 12:36 AM by TcpIp RSS

Currently Being Moderated

ASA internal order of operations

Apr 17, 2012 1:35 PM

MIKIS 78 posts since
Dec 12, 2010

Hello

 

I was not able to find enough documentation about ASA's internal order of operation so after testing with packet-tracer I made 2 flow charts.

 

I am open to any recommendations in order to fix/improve the 2 charts (for example I want to add the VPN encrypt/decrypt phases, but I haven't tested yet).

 

I would also like to confirm the following lists:

INSIDE -> OUTSIDE

1. Route Lookup

2. RPF (Antispoofing)

3. ACL

4. Source NAT

 

OUTSIDE -> INSIDE

1. RPF (Antispoofing)

2. ACL

3. UN-NAT (Destination NAT)

4. Route lookup

 

in-out.JPG

out-in.JPG

Thank you

Actions

More Like This

  • Retrieving data ...

Bookmarked By (1)