Some questions on ASA 5505 setup

Discussion in 'Cisco' started by junk, Dec 22, 2009.

  1. junk

    junk

    Joined:
    Dec 22, 2009
    Messages:
    1
    Likes Received:
    0
    Hello,

    I've been setting up an ASA 5505 with site-to-site VPN, NAT and so on. I have som questions:

    1. I ran the wizard for creating a client VPN, but changed my mind (we use ISA for this instead). There's no "de-wizard" to remove what got added when I ran the wizard, what will I need to remove? For example, a tunnel group named DefaultRAGroup was added which I now can't delete.
    2. Currently, my ACLs are permitting everything. For each interface (inside/outside) it says "any any permit tcp/udp/icmp/esp". I understand it's not best practice, but as I'm using NAT between outside (Internet) and inside (local network) it's not completely open, right? What are these ACLs for?

    Thanks in advance!
     
    junk, Dec 22, 2009
    #1
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.