I’ve managed Gauntlets, Checkpoints, Netscreens, and
SonicWalls in the past.
I’m a bit confused with the in and outs of the ASA
firewalls.
I’m setting up at HA pair, my Eth0/0 is my interior
interface, trust level 100, Eth 0/1 and 0/2 are my IP and State heatbeats, and
Eth 1/0 is my external interface, trust level 1.
Am I correct in my understanding that if I want two-way
traffic, traffic is not blocked to a lower trust level, so I need only write a
rule to pass the traffic between the endpoints from the external interface to
the internal interface, and the reply traffic is taken care of ?? Or do I
have to write a reverse rule, from the internal interface to the external as
well ???