If you wish to completely remove ip inspect, you will have in the config:
ip inspect name xxxxx [protocol]
ip inspect name OUTRULE http java-list 15 alert on audit-trail on
ip inspect name OUTRULE tcp alert on audit-trail on
ip inspect name OUTRULE udp alert on audit-trail on
remove all the entries and remove the "ip inspect [name] out/in" from the interface that it is applied to...
ip inspect OUTRULE out
IOS will run as normal, but be aware that you may have to change the ACL's on the inside or outside interface if you wish to adjust the traffic permitted/denied. It depends on the configuration and what traffic was being inspected.
Conversely you could just remove the ip inspect from the interface and leave the inspection rules in place in the config to allow you to re-use/adjust them if necessary.
The following URL will help shed some light on CBAC
This is actually a pretty cool feature, i didn't even know it existed until I was looking for a solution to advertise a subnet (prefix in BGP talk), only if a certain condition existed. This is exactly what conditional advertisements does
j ai une question j ai achete un routeur cisco 887VA-k9 , je le configuré avec la configuration ci- dessous
si je le lier avec mon pc portable sur l un de ses ports directement ça marche toute est bien ( la connexion internet + m...
Attached policy provides CLI access to the Cisco 4G router over text messaging. Two files are in the attached .tar file:
2. PDF with instructions on how to load and use the .tcl file.