I am trying to determine if it matters which interface I apply the "ip inspect" too on a cisco ios router/firewall.
From reading up on the "ip inspect" it says that if you have the "ip inspect" the return traffic will bypass any ACLs. In the below example will the return traffic still bypass the ACL 100 on Fa0/1 even if the inspect is applied to Fa0/0.
internal network: 192.168.1.0/24
description Internal Network
ip address 192.168.1.1 255.255.255.0
ip access-group 101 in
ip inspect FWINSPECT in
ip nat inside
description Connection to the Internet
ip address 220.127.116.11 255.255.255.252
ip access-group 100 in
ip nat outside