03-08-2011 03:09 PM - edited 03-09-2019 11:26 PM
Hi,
I have been controlling traffic with ACL but i want to configure ZFW and i want to ask how can i migrate ACL´s to policy with ZFW. I mean for example
i have acl
permit ip any 64.x.x.x 0.0.0.255
deny ip any any
how can i do to do this with ZFW???
Thanks in advance!
Regards.
03-08-2011 08:11 PM
Hi,
For generic ZBF configuration examples, please take a look at:
Specifically, if you have traffic you want to permit as in your example here, you'd have something like this:
class-map type inspect match-any permit-64-net
match access-group permit-64-acl
!
policy-map type inspect fw
class type inspect permit-64-net
pass
class class-default
drop log
03-28-2011 08:17 AM
Hi,
Thanks for your answer!
I configured inspect in class map for acl and it is works fine.
Best Regards
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: