About freemant2000

freemant2000 · ‎02-06-2012

I see. Thanks! Is there any documentation on this behavior? For the case where inspection is applied to an inside interface, the doc seems to say that we can have either an outbound ACL on that inside inferface or inbound ACL on the outside interface(s) for CBAC to add the temporary entries to. if both are present, I guess both will be added to?

freemant2000 · ‎02-05-2012

Thanks for the reply! If the router has multiple interfaces, how can it determine which is the outside interface to add the temporary entries to?

freemant2000 · ‎02-05-2012

Hi, I am trying to understand the example at http://www.cisco.com/en/US/docs/ios/sec_data_plane/configuration/guide/sec_cfg_content_ac.html#wp1002224 in which the "ip inspect" command is applied to Ethernet 1/0 but the document says that the dynamic temporary entries will be created in the ACL 100 which is applied to another interface (Etherent 1/1). Is this true? I am under the impression that "ip inspect ... in" will add entries to the outbound ACL for the same interface, while "ip inspect ... out" will add entries to the inbound ACL for the same interface. Thanks in advance!

freemant2000 · 02-06-2012

I see. Thanks! Is there any documentation on this behavior? For the case where inspection is applied...

freemant2000 · 02-05-2012

Thanks for the reply! If the router has multiple interfaces, how can it determine which is the outsi...

freemant2000 · 02-05-2012

Hi,I am trying to understand the example at http://www.cisco.com/en/US/docs/ios/sec_data_plane/confi...

Date Registered	‎02-05-2012 01:57 AM
Date Last Visited	‎08-18-2017 03:50 AM
Total Messages Posted	3

CBAC: creating temporary entries in ano...

CBAC: creating temporary entries in ano...

CBAC: creating temporary entries in ano...

CBAC: creating temporary entries in another interface?

CBAC: creating temporary entries in another interface?

CBAC: creating temporary entries in another interface?