Professional Documents
Culture Documents
IOS Firewalls
IOS Firewalls
IOS: Ciscos Internetwork Operating System (the primary system running on Ciscos routers) IOS Firewall: a stateful packet-filter firewall that runs on a router, providing firewall capabilities CBAC: Context-Based Access Control (at the core of the IOS Firewall functionality
Outline
CBAC IOS Firewall Features Case studies
2. Inspection of the application/transport level protocols ~= multimedia support in PIX 3. Control of the number/length of sessions
http://sce.uhcl.edu/yang/teaching/. ../IOS Firewalls.ppt 3
CBAC Functionality
1. Set up Access Control Lists to open holes for inbound access to inside servers 2. Set up the router to inspect outbound packets, and 3. Keep track of the associated sessions i.e., a stateful packet filter
Case Study
CBAC on a router configured with NAT