Today, I will be talking about the Cisco Zone-Based Firewall, including their differences and advantages compared to a Cisco ASA. I will also walk through the configuration steps, showing how to turn NetFlow on and start getting these awesome Zone Pair and Class reports!
What is a Zone-Based Firewall?
The Cisco Zone-Based Firewall is the successor of Classic IOS firewall or CBAC (Context-Based Access Control). It primarily deals with the security “zones”. We can assign router interfaces to various security zones and control the traffic between them. The firewall dynamically inspects traffic passing through zones. In addition to all the features available in classic IOS firewall, the Zone-Based Firewall supports application inspection and control for: HTTP, POP3, Sun RPC, IM Applications, and P2P File sharing.
Read more »
Technical Support Specialist
For a free 30 day trial of Scrutinizer, Download Now!