Cisco Network Security Book by Ricky Barnes

Cisco Network Security Book by Ricky Barnes

Author:Ricky Barnes [Barnes, Ricky]
Language: eng
Format: azw3
Published: 2018-10-03T16:00:00+00:00


In the configuration in Listing 4.7, the first command line enables audit trail logging of session information, the second and third lines set the length of time a TCP and UDP session is managed after no activity is received, and the fourth line sets the length of time a DNS name lookup session is still managed after no activity is received. The next set of configuration lines sets up an inspection list that is named cbactest; this CBAC inspection list will be used for inspection of inbound traffic on Ethernet0/0 and inbound return traffic on Serial0/0. Under interface Ethernet0/0, access list 100 is applied to allow all legitimate traffic from the inside network. Access list 101 is also applied to allow some ICMP traffic and deny everything else. The inspection list cbactest will add entries to this list to permit return traffic for connections established from the inside. Finally, under interface Ethernet0/0, the inspection list cbactest is applied to inspect inbound traffic on Ethernet0/0.



Download



Copyright Disclaimer:
This site does not store any files on its server. We only index and link to content provided by other sites. Please contact the content providers to delete copyright contents if any and email us, we'll remove relevant links or contents immediately.