Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
ovt Bronze
Bronze

IOS Zone-based Policy Firewall questions

1. Why doesn't "drop log" policy-map action send unreachables? Is this a bug or feature?

2. Why doesn't ZPF control multicasts terminated at the self zone (EIGRP, for example), so it is not possible to control which multicasts are accepted and which aren't. Is this a bug or feature?

3. Why is SMTP guard enabled by default and cannot be disabled if "match protocol smtp" is used? Is this a bug or feature?

4. Does cisco have performance metrics for ZPF compared to traditional CBAC?

IOS 12.4(15)T

Thx.

2 REPLIES
Anonymous
N/A

Re: IOS Zone-based Policy Firewall questions

Refer to the zone based frewall feature page for more information

http://cisco.com/en/US/products/hw/routers/ps341/products_data_sheet0900aecd802c8530.html

Community Member

Re: IOS Zone-based Policy Firewall questions

i have the same problem with the SMTP being blocked,

have you found a way to make it work??

380
Views
0
Helpful
2
Replies
CreatePlease to create content