NBAR and match protocol

Answered Question
May 10th, 2009
User Badges:

is it necessary to turn on NBAR for command "match protocol" even the protocol is very command protocol "smtp", "DNS", etc?


if no, when shall we turn on NBAR?

Correct Answer by mahmoodmkl about 7 years 10 months ago

Hi


as soon as u enter the config in the MQC and if u want to use the above statement NBAR is automatically turned on.


If u dnot want to use NBAR then u can use access-lists.


Thanks

Mahmood

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
mahmoodmkl Sun, 05/10/2009 - 00:40
User Badges:
  • Gold, 750 points or more

Hi


as soon as u enter the config in the MQC and if u want to use the above statement NBAR is automatically turned on.


If u dnot want to use NBAR then u can use access-lists.


Thanks

Mahmood

Joseph W. Doherty Sun, 05/10/2009 - 04:28
User Badges:
  • Super Bronze, 10000 points or more

"is it necessary to turn on NBAR for command "match protocol" even the protocol is very command protocol "smtp", "DNS", etc? "


No, as Mahmood also notes.


"if no, when shall we turn on NBAR?"


If you need to do NBAR protocol discovery.

Actions

This Discussion