Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
463
Views
0
Helpful
2
Replies

IOS firewall or Reflexive ACL?

Bojan Zivancevic
Level 1
Level 1

‎07-23-2003 10:45 PM - edited ‎02-20-2020 09:22 PM

What is the main benefit of using IOS firewall (CBAC) over reflexive ACLs? Speed? Both are opening holes as they are needed and closing them afterwards.

Is it CBAC's application layer awareness?

Thx

Labels:
0 Helpful
2 Replies 2

mhoda
Level 5
Level 5

‎07-24-2003 09:41 AM

Hi,

CBAC has the DOS protection unlike Reflexive ACL. Inrecept feature is built into CBAC.

I hope this helps.

Regards,

Mynul

0 Helpful

r-lemaster
Level 1
Level 1

‎07-28-2003 04:43 PM

Yes, CBAC has application awareness/inspection and reflexive ACLs don't. CBAC also has more features like traffic filtering, java blocking, alerts, audit trails, & intrusion detection. I believe IDS and stuff requires a 2600 or better. Use CBAC.

0 Helpful
Customers Also Viewed These Support Documents