Re: configuring IOS firewall Zone Based --> remotely
thanks for the info (I know the reload command and also the rollback command).
Q1) When I try to insert on the 1st interface the "zone-member security trust" or "zone-member security untrust" I LOST THE ROUTER CAUSE THE OTHER INTERFACES ARE NOT CONFIGURED: HOW I CAN ACTIVATE THE ZONE-MEMBER COMMAND ON THE ROUTER WITHOUT LOST IT ?
Q2) it's possible (like Juniper JUNOS) made alla the new configuration and execute the "commit now" when I've finished ?
Q3) Is there any other feature on cisco IOS to allow to configure the router, check the configuration and only AFTER put it on the running config (the only tip i?ve found is to modify the startup config and load in or merge the running config with another conf...)?
Using Cisco Config Rollback
Replace the Running Configuration with the Latest Good Archive After Two Minutes Unless the Change Being Made Is Confirmed
There are currently 4 archive configurations saved.
The next archive file will be named disk0:/config-archive-4
Archive # Name
3 disk0:/config-archive-3 <- Most Recent
Router#config replace disk0:/config-archive-3 time 120
If the configuration was successful, apply the changes
â¢ If the config changes caused the user to be locked out, the router will automatically revert to the last saved archive configuration after two minutes, and connectivity will be restored
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...