Sorry forgot to mention the router-traffic command. Indeed like Ryan
said, it will only match traffic from the router when that is
configured. It can't be configured on every inspect rule, but most
related ones will have it.
--
Regards,
Rick Mur
CCIE2 #21946 (R&S / Service Provider)
Sr. Support Engineer � IPexpert, Inc.
URL: http://www.IPexpert.com
On 27 okt 2009, at 14:12, Ryan West wrote:
> Inspect rule do not match locally originated unless you have router-
> traffic listed. An example of this is using SIP inspection on a
> voice gateway when your router is acting as the UA. ip inspect name
> myfw sip router-traffic.
>
> -ryan
>
> -----Original Message-----
> From: nobody_at_groupstudy.com [mailto:nobody_at_groupstudy.com] On Behalf
> Of Rick Mur
> Sent: Tuesday, October 27, 2009 8:07 AM
> To: andy thomas
> Cc: ccielab_at_groupstudy.com
> Subject: Re: Outbound filters do not affect traffic originating on
> the router
>
> Use inspect rules, ACL's don't match locally originated traffic, but
> inspect
> rules do.
>
>
> --
>
> Regards,
>
> Rick Mur
> CCIE2 #21946 (R&S / Service Provider)
> Sr. Support Engineer � IPexpert, Inc.
> URL: http://www.IPexpert.com
>
>
> On Tue, Oct 27, 2009 at 12:33 PM, andy thomas
> <thomasandy32_at_gmail.com>wrote:
>
>> Hey friends,
>>
>> How i can achieve traffic originating on the router to be filtered
>> outbound.
>>
>> Thanks
>>
>>
>> Blogs and organic groups at http://www.ccie.net
>>
>> _______________________________________________________________________
>> Subscription information may be found at:
>> http://www.groupstudy.com/list/CCIELab.html
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
Blogs and organic groups at http://www.ccie.net
Received on Wed Oct 28 2009 - 12:50:55 ART