Trying to block access from "inside" to "dmz1"...
interface Ethernet0/1 nameif inside security-level 100 ip address 192.168.1.1 255.255.255.0 ! interface Ethernet0/2 nameif dmz1 security-level 2 ip address 192.168.2.1 255.255.255.0 ! access-list acl_outgoing extended deny ip any 192.168.2.0
255.255.255.0 access-list acl_outgoing extended permit ip any any ! access-group acl_outgoing in interface insideWhy am I still able to access host 192.168.2.2 from 192.168.1.7 ??