CBAC DIRECTION

From: cadet (cadet22@gmail.com)
Date: Tue Jan 09 2007 - 11:34:55 ART

• Next message: Durkin, Michael (MED US): "RE: Lab Study Partner"
• Previous message: Arnaldo Tapel: "Re: sydney lab dates"
• Next in thread: secondie: "Re: CBAC DIRECTION"
• Maybe reply: secondie: "Re: CBAC DIRECTION"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi ALL !
I have question about CBAC direction.

for example, I have:

protected network --- e0 --- R1 --- e1 --- unprotected network
I need accept only connections from protected network or answers from
unprotected network on this connections.

As for me there are 2 variants:

1
protected network CBAC IN --- e0 --- R1 --- e1 ACL IN (deny any any)--- unprotected network
                  ^^^^^^^ ^^^^^^^^^^^^^^^^^^^^^

2
protected network --- e0 --- R1 --- e1 CBAC OUT + ACL IN (deny any any) --- unprotected network
                                       ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

Which variant is correct ?

HTH.

• Next message: Durkin, Michael (MED US): "RE: Lab Study Partner"
• Previous message: Arnaldo Tapel: "Re: sydney lab dates"
• Next in thread: secondie: "Re: CBAC DIRECTION"
• Maybe reply: secondie: "Re: CBAC DIRECTION"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Feb 08 2007 - 23:46:56 ART