zone based firewall cisco ios router

I am trying to set up a zone based firewall for my 881 router.  I know what the commands are.  But I do not fully understand the "inspect" command.  I know the inspect command inspects traffic but what does that mean?  does it just create logs or what?
mmercaldiAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

e1extCommented:
It investigates the traffic passing through the interface. I think you need to read article about CBAC (Context-Based Access Control).  Also what do you mean by "zone based firewall"? What kind of result do you expect in the network?
0
alewis9777Commented:
CBAC is now deprecated.  Zone based has taken its place in configuring a stateful inspection based on zones (inzone, outzone).

Think of the inspect command like this:  When traffic comes into or out of an interface the inspect command does whats called a stateful inspection meaning that it not only looks at the header of the packet but it actually looks at contents of the packet to determine what it actually is.  A stateful inspection can do this all the way up to the application layer which gives you much better protection and control over your traffic.

0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Nayyar HH (CCIE RS)Network ArchitectCommented:
When you use "inspect" it enables the ZFW to apply basic TCP or UDP inspection (at least), however it ZFW is "aware" of the protocol it will apply application-aware inspection. With application-aware inspection, ZFW understands the protocol and will permit secondary channels through that are associated with the primary channel that was already permiitted.
0
Big Business Goals? Which KPIs Will Help You

The most successful MSPs rely on metrics – known as key performance indicators (KPIs) – for making informed decisions that help their businesses thrive, rather than just survive. This eBook provides an overview of the most important KPIs used by top MSPs.

mmercaldiAuthor Commented:
oh ok so it slows down traffic as well right?
0
Nayyar HH (CCIE RS)Network ArchitectCommented:
Yes, There will be some latency introduced but this doesnt usually impact application performance.
0
mmercaldiAuthor Commented:
ah so thats why people do not use inspect on everything, groovy
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Routers

From novice to tech pro — start learning today.