Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2139
Views
5
Helpful
1
Replies

ZBFW simple question

Go to solution
kubn2
Level 1
Level 1

‎10-12-2019 12:29 PM - edited ‎02-21-2020 09:35 AM

Hi,

 

It's very basic question but I would like to be sure because I didn't find a clear and simple answer.

When I setting up a class-map to inspect traffic (match-any) I need to choose which protocols to inspect but do I understand this correctly if I will set:

#match protocol udp

does it apply to for example DNS packets which also use udp or I need to define match protocol dns separately? 

 

 

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Rob Ingram
VIP
VIP

‎10-12-2019 12:43 PM

Hi,
Yes, by matching on UDP protocol it should permit DNS, unless of course DNS is using TCP.

HTH

View solution in original post

1 Reply 1

Go to solution
Rob Ingram
VIP
VIP

‎10-12-2019 12:43 PM

Hi,
Yes, by matching on UDP protocol it should permit DNS, unless of course DNS is using TCP.

HTH
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card