Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
433
Views
0
Helpful
2
Replies

Firewall CBAC on an ISR

shikamarunara
Level 4
Level 4

‎07-23-2007 12:45 PM - edited ‎03-11-2019 03:48 AM

Hello,

I have a general question regarding firewalls, but specifically as it pertains to the CBAC firewall feature set on, say, a 2811. Assuming that I have an ISR with a serial interface on the WAN side and an Ethernet as the LAN side, an ACL set up on the WAN side pointed inward (to filter incoming traffic.) Now, I have to decide which type of traffic the CBAC should inspect on the WAN interface (inbound or outbound). It makes sense to me that the inbound traffic should be inspected after it clears the acl (since we're trying to protect ourselves from internal threats.) Is there any reason to inspect traffic headed outbound from the LAN side?

-Shikamaru

Labels:
0 Helpful
2 Replies 2

sundar.palaniappan
Level 10
Level 10

‎07-23-2007 01:47 PM

No, typically traffic is inspected inbound on LAN interface or outbound on WAN interface. You may want to inspect traffic outbound on WAN interface if you want to inspect traffic on multiple interfaces inbound on the same router.

HTH

Sundar

0 Helpful

froggy3132000
Level 3
Level 3

‎07-23-2007 01:50 PM

All examples include ip inspect on the inside interface.

http://www.cisco.com/en/US/products/sw/secursw/ps1018/products_configuration_example09186a008009445f.shtml

In order for stateful inspection to occur.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card