To allow traffic inbound to a web server from the internet (which is considered a zero security level zone on a Cisco ASA), you must configure Access Rules.
Access rules are necessary to permit traffic from higher security zones (like the internet) to lower security zones (like your DMZ) and specify the conditions under which particular traffic types are allowed or denied. Without the correct access rules, the ASA will deny inbound traffic by default, even if the server is configured to accept it.
So, in this case, the correct answer is Access Rules.
1 answer