Cisco 5505 ASA firewall how to tell one interface to only allow connections from a specific IP address

Question

How to I tell the ASA 5505 to only allow connections from 192.168.1.2 through interface 2? I can use ADSM or Console command line..

ewwhite · Accepted Answer · 2011-02-12T00:45:24.583

1

Assuming inside and outside interface labeling... Management access can be limited via:

For ASDM access: http 192.168.1.2 255.255.255.255 inside

For telnet access: telnet 192.168.1.2 255.255.255.255 inside

For general network traffic, you'd establish an access rule... Inbound-to-outbound.

Something like: access-list inside_access_in extended permit ip 192.168.1.2 255.255.255.255 any

edited Feb 12 '11 at 00:45

answered Feb 12 '11 at 00:40

ewwhite

score 1 · Answer 2 · answered Feb 12 '11 at 01:50

1

Assuming you've named the internal interface inside, here's what it would look like:

access-list inside_access_in extended permit ip host 192.168.1.2 any
access-group inside_access_in in interface inside

answered Feb 12 '11 at 01:50

Jason Berg

2 Answers2