security-level Command
The security-level value controls how hosts/devices on the different interfaces interact with
each other. By default, hosts/devices connected to interfaces with higher-security levels can
access hosts/devices connected to interfaces with lower-security interfaces. Hosts/devices
connected to interfaces with lower-security interfaces cannot access hosts/devices connected
to interfaces with higher-security interfaces without the assistance of access lists. The
security-level command is new to version 7.0 and replaces the older nameif command feature
that assigned the security level for an interface. Two interfaces, the inside and outside
interfaces, have set security levels but can be overridden using this command. The inside
interface has a default security level of 100; the outside interface has a default security level
of 0. Newly added interfaces receive a default security level of 0. To assign a new security
level to an interface, use the security-level command in the interface command mode. The
syntax of the security-level command is as follows:
security-level number
where number can be a numerical value from 1 to 99 indicating the security level.
interface has a default security level of 100; the outside interface has a default security level
of 0. Newly added interfaces receive a default security level of 0. To assign a new security
level to an interface, use the security-level command in the interface command mode. The
syntax of the security-level command is as follows:
security-level number
where number can be a numerical value from 1 to 99 indicating the security level.