Introduction

Previous page
Table of content
Next page

The Cisco IOS Firewall feature set provides robust, integrated firewall and intrusion-detection functionality at the perimeter of the network. The type of perimeter network can be intranets , extranets (partnernets), and Internet connectivity to remote and branch offices. The Cisco IOS Firewall provides the flexibility by providing a well-rounded solution for perimeter security. IOS Firewall is also scalable and supports Cisco IOS IP Security (IPSec) virtual private network (VPN) solutions and other software-based technologies, including Layer 2 Tunneling Protocol (L2TP) and quality of service(QoS).

CBAC is an integral part of the Cisco IOS Firewall feature set and provides unidirectional as well as bidirectional stateful filtering. A typical example is to configure CBAC between two partner companies' networks: you might restrict certain traffic flows for a specific application in one direction. You can also restrict specific traffic flows for other applications in the opposite direction. In other words, you can configure CBAC on a per-interface basis as well.

In this chapter, you will learn how CBAC dynamically creates a state table in the Cisco IOS Firewall router to allow outbound traffic from the internal networks and subsequently monitors return traffic associated with that traffic flow.


Previous page
Table of content
Next page
CCSP SECUR Exam Cram 2
CCSP SECUR Exam Cram 2 (642-501)
ISBN: B000MU86IQ
EAN: N/A
Year: 2003
Pages: 291
Authors: Raman Sud
BUY ON AMAZON
Snort Cookbook
Network Security Architectures
MySQL Cookbook
101 Microsoft Visual Basic .NET Applications
Sap Bw: a Step By Step Guide for Bw 2.0
The Lean Six Sigma Pocket Toolbook. A Quick Reference Guide to Nearly 100 Tools for Improving Process Quality, Speed, and Complexity
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy