CBAC query

From: GAURAV MADAN (gauravmadan1177@gmail.com)
Date: Sun Nov 23 2008 - 12:45:51 ARST

• Next message: Scott Morris: "RE: I am now CCIE written certified ( Best way for the lab)"
• Previous message: Farhan Anwar: "Re: CCIE Salary Survey"
• Next in thread: Reza Toghraee: "RE: CBAC query"
• Maybe reply: Reza Toghraee: "RE: CBAC query"
• Maybe reply: Jason Madsen: "Re: CBAC query"
• Maybe reply: Jason Madsen: "Re: CBAC query"
• Maybe reply: Pavel Bykov: "Re: CBAC query"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi Group

I am really confused ; trying to figure out how CBAC functions and how is it
different from reflexive ACLs.
Here is what I am trying

ip inspect name TEST tcp
ip inspect name TEST udp
ip inspect name TEST icmp

                 R1---f0/1---------------------------R4
                 |f0/0
                 |
====================
| |
R2 R3

If I apply "ip inspect TEST in " on f0/0 of R1 .. what purpose it serves?
Does it inspect tcp , udp and icmp traffic coming in f0/0 and this is only
traffic allowed to come to inside network via f0/1
I mean if I want TCP , UDP and ICMP traffic initiated from inside network to
access outside network ; what will be CBAC way of doing this and how to test
this ?

Is there a good writeup on same .. DOC cd is not very helpful in this

Gaurav Madan

Blogs and organic groups at http://www.ccie.net

• Next message: Scott Morris: "RE: I am now CCIE written certified ( Best way for the lab)"
• Previous message: Farhan Anwar: "Re: CCIE Salary Survey"
• Next in thread: Reza Toghraee: "RE: CBAC query"
• Maybe reply: Reza Toghraee: "RE: CBAC query"
• Maybe reply: Jason Madsen: "Re: CBAC query"
• Maybe reply: Jason Madsen: "Re: CBAC query"
• Maybe reply: Pavel Bykov: "Re: CBAC query"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Mon Dec 01 2008 - 08:18:31 ARST