Chapter 6. Access Control Lists and Traffic Control

Terms you'll need to understand:

  • Access list

  • Access group

  • Turbo ACLs

  • Object grouping

  • Allowing traffic in

  • Controlling traffic out

  • Conduits

Techniques you'll need to master:

  • Access lists

  • Turbo ACLs

  • Network object groups

  • Protocol object groups

  • Nesting object groups

  • ICMP through the PIX

The Cisco PIX firewall has several commands in its arsenal to control traffic flow: conduit commands to control traffic from lower security level interfaces to higher security level interfaces; outbound filter commands to control traffic from higher security level interfaces to lower level interfaces; and Cisco Access Control List (ACL) commands. The ACL commands can do everything conduit and outbound filter commands do, but they do them better and even come with powerful features such as turbo ACLs and object grouping. This chapter talks about the uses of conduits, outbound filters, ACLs, turbo ACLs, and object grouping.

CSPFA Exam Cram 2 (Exam 642-521)
CCSP CSPFA Exam Cram 2 (Exam Cram 642-521)
ISBN: 0789730235
EAN: 2147483647
Year: 2003
Pages: 218 © 2008-2017.
If you may any questions please contact us: