I tried to activate the zone based firewall feature in a Cisco 850 router running 12.4(15)T5. I can successfully define zones, zone-pairs and assign interfaces to zones. However, I am unable to define class-maps and policy maps.
Did anybody run into the same problem? What use can zones possibly be without class-maps and policy-maps?
Zone-Based Firewall configuration model offers intuitive policies for multiple-interface routers, increased granularity of firewall policy application, and a default deny-all policy that prohibits traffic between firewall security zones until an explicit policy is applied to allow desirable traffic.
Refer the following link for "Zone-Based Policy Firewall Design and Application Guide" which will help you in knowing more about zone-based firewalls:
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...