What is the best practices when deploying the IOS Firewall feature on routers, especially on the 800 series routers?
I know that a router will never be a true firewall but those features are there to make them simulate...
Usually what I do is the following:
ip inspect name IOS_Firewall tcp
ip inspect name IOS_Firewall udp
And then I apply this on the Outside firewall:
ip inspect IOS_Firewall out
So far I've no problems but I was wondering if there is even a better way, which Im sure there is. Like for example, those 2 "inspect" statements will grab all tcp and udp packets, but what about for the other packets that have other protocols?
thank you in advanced