<div>
It means that it will keep track of TCP connections, inspecting packets for abnormalities and/or possible attacks.<br />
<br />
Same applies to ICMP, the firewall will inspect the packet, make sure everything looks ok in it, then pass it on.<br />
<br />
If the packet is deemed bad, corrupt or invalid - even part of a possible attack, it will then be dropped.<br />

</div>


It means that it will keep track of TCP connections, inspecting packets for abnormalities and/or possible attacks.

Same applies to ICMP, the firewall will inspect the packet, make sure everything looks ok in it, then pass it on.

If the packet is deemed bad, corrupt or invalid - even part of a possible attack, it will then be dropped.


<div>
For example, if you do not include a<br />
<br />
&nbsp;&quot;IP INSPECT NAME OUTSIDE UDP&quot;<br />
<br />
The firewall will not take any notice of UDP packets, and just pass them straight on to the destination.<br />

</div>


For example, if you do not include a

 "IP INSPECT NAME OUTSIDE UDP"

The firewall will not take any notice of UDP packets, and just pass them straight on to the destination.


<div>
&quot;inspecting packets for abnormalities and/or possible attacks&quot;<br />
<br />
How can it determine if a packet is bad like you have mentioned above?
</div>


"inspecting packets for abnormalities and/or possible attacks"

How can it determine if a packet is bad like you have mentioned above?

<div>
<div class="content wysiwyg-content">
I am trying to make sense of the IP INSPECT statement of the Cisco IOS firewall. What does it mean when I have IP INSPECT NAME OUTSIDE TCP? or IP INSPECT NAME OUTSIDE ICMP? Does it mean that after the packet pass through the access list, it will be inspected by the IOS firewall and it the packet is not a TCP connection or an ICMP packet, the packet will be dropped? Thx<br />

</div>
</div>


I am trying to make sense of the IP INSPECT statement of the Cisco IOS firewall. What does it mean when I have IP INSPECT NAME OUTSIDE TCP? or IP INSPECT NAME OUTSIDE ICMP? Does it mean that after the packet pass through the access list, it will be inspected by the IOS firewall and it the packet is not a TCP connection or an ICMP packet, the packet will be dropped? Thx


Cisco IOS firewall - ip inspect name OUTSIDE TCP

A router is a networking device that forwards data packets between computer networks. Routers perform the "traffic directing" functions on the Internet. The most familiar type of routers are home and small office cable or DSL routers that simply pass data, such as web pages, email, IM, and videos between computers and the Internet. More sophisticated routers, such as enterprise routers, connect large business or ISP networks up to the powerful core routers that forward data at high speed along the optical fiber lines of the Internet backbone. Though routers are typically dedicated hardware devices, use of software-based routers has grown increasingly common.

Routers

A virtual private network (VPN) is a network that uses a public telecommunication infrastructure, such as the Internet, to provide remote offices or travelling users access to a central organizational network securely. VPNs encapsulate data transfers using secure cryptographic methods and other security mechanisms to ensure that only authorized users can access the network and that the data cannot be intercepted.