Cisco IOS firewall question

Unanswered Question
Oct 21st, 2008

Dear all

our customer has a router 2800 in a branch site , they need to configure the router as a firewall and IPS.

This router is working properly and all the users connect to their applications in the main site through it. If i start to configure the router to be a firewall , is this affecting on the router ???

In other words is this affecting on the routing table of the router ??

If i configure the router to be firewall & IPS during working hours , will this affect on the network or not ???

regards

mohamed

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Collin Clark Tue, 10/21/2008 - 12:20

Configuring the firewall feature will not affect the routing table, however configuring firewall and/or IPS will affect traffic flows. You should certainly wait until off hours to configure.

abinjola Wed, 10/22/2008 - 00:39

well, the IOS firewall feature doesn't deal with route lookup therefore your routing is not affected, only a tcp/udp session is maintained to create dynamic ACLS for return traffic, so yes your traffic would not be blocked,

Even with IPS configured you are safe and may do the configuration in real time as default action for all the signatures are "ALRERT" and even if a signature is fired , the "concern" traffic is not blocked

Actions

This Discussion