[nsp] IOS Firewall Issues
Stephen Gill
gillsr at yahoo.com
Fri Apr 4 17:02:45 EST 2003
Look up CBAC. Adaptive Security Algorithm is not used like it is on the
PIX. You can also used Reflexive ACLs but CBAC is preferred.
-- steve
-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Wilson, Dan
Sent: Friday, April 04, 2003 4:50 PM
To: cisco-nsp at puck.nether.net
Subject: [nsp] IOS Firewall Issues
I have a couple of questions regarding IOS Firewall.
Am I correct in assuming it *does* stateful?
How would I view the state tables?
How would I determine what traffic is allowed inbound??
And
How, exactly, would I set rules on what would be allowed inbound?
I'm running 7140, 7206, 3640 and 2621's all running 12.2(8)T, which I
Switched to in order to run encrypted traffic over GRE tunnels, so
That I could change routes if tunnel connections weren't working.
Any ideas would be appreciated.
Thanks.
Dan
dan.wilson at transamerica.com
_______________________________________________
cisco-nsp mailing list cisco-nsp at puck.nether.net
http://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
More information about the cisco-nsp
mailing list