Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

PIX Standard Stateful Operation Versus CBAC?

Correct me if I am wrong, the Cisco Pix by default will only allow packets from the outside to inside if there is an entry for it in it's state table.

Other than CBAC's ability to filter on the application layer via control packets, is there any other differences between CBAC and the default setup of a PIX?

Thanks.

2 REPLIES
New Member

Re: PIX Standard Stateful Operation Versus CBAC?

PiX Firewall by design is a firewall, (security levels, nat-control, packet inspection at level 7, etc) CBAC does emulate the packet inspection that a PIX Firewall does, here is a link with pretty good information about the CBAC capabilities and the scenarios in which you may use it:

http://www.cisco.com/en/US/products/ps6350/products_configuration_guide_chapter09186a00804a41c5.html#wp1000932

New Member

Re: PIX Standard Stateful Operation Versus CBAC?

The link you supplied involves the router IOS based firewall functionality.

Is CBAC only allowed on router based firewalls or are they allowed on PIX's as well?

Thanks.

112
Views
0
Helpful
2
Replies