Context-Based Access Control (CBAC) gives network protection on multiple levels using the following functions:
Alerts and audit trails
The following sections describe these functions in greater detail.
CBAC can provide intelligent filtering of TCP and UDP packets based on the application-layer protocol session information included in the packet. You can configure CBAC to permit only specified TCP and UDP traffic through your firewall when the connection is initiated from within the network you want to protect. CBAC can inspect traffic for sessions that originate either inside or outside your firewall. CBAC is supported for use on intranet, extranet, and Internet ...