[nsp] IOS Firewall Issues
Mailing List Subscriptions
jcc-list at thenetexpert.net
Fri Apr 4 15:04:35 EST 2003
Answers inline ...
> -----Original Message-----
> From: cisco-nsp-bounces at puck.nether.net
> [mailto:cisco-nsp-bounces at puck.nether.net]On Behalf Of Wilson, Dan
> Sent: Friday, April 04, 2003 2:50 PM
>
> I have a couple of questions regarding IOS Firewall.
>
> Am I correct in assuming it *does* stateful?
YES.
> How would I view the state tables?
sh ip inspect session
or
sh ip inspect all
> How would I determine what traffic is allowed inbound??
Assuming you have already configured IP inspection of outbound traffic ...
"sh access-list <inbound list number or name>" and look for entries inserted
by CBAC.
Regards,
Joe
More information about the cisco-nsp
mailing list