CCIE Practical Studies: Security (CCIE Self-Study)

Creating a Customized Firewall

To create a customized firewall designed to comply with your organization's security policy, you should first determine which of the many features available with the Cisco IOS Firewall are most appropriate. At a minimum, you should consider configuring basic traffic filtering to create a simple firewall. You can create your firewall on a Cisco device by using these Cisco IOS Firewall features:

Standard access lists and static extended access lists
Lock-and-key (dynamic access lists)
Reflexive access lists
TCP intercept
CBAC
Cisco IOS Firewall Intrusion Detection System (IDS)
Authentication proxy
Port-to-Application Mapping (PAM)
Security server support
Network Address Translation (NAT)
IPSec network security
Neighbor router ...

Get CCIE Practical Studies: Security (CCIE Self-Study) now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

CCIE Practical Studies: Security (CCIE Self-Study) by Dmitry Bokotey, Andrew G. Mason, Raymond Morrow

Creating a Customized Firewall

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly