Chapter 8 Configuring a Simple Firewall

Apply Access Lists and Inspection Rules to Interfaces

BETA DRAFT - CISCO CONFIDENTIAL

Apply Access Lists and Inspection Rules to Interfaces

Perform these steps to apply the ACLs and inspection rules to the network interfaces, beginning in global configuration mode:

 

Command

Purpose

Step 1

 

 

interface type number

Enters interface configuration mode for the

 

 

inside network interface on your router.

 

Example:

 

 

Router(config)# interface vlan 1

 

 

Router(config-if)#

 

Step 2

 

 

ip inspect inspection-name{in out}

Assigns the set of firewall inspection rules to the

 

 

inside interface on the router.

 

Example:

 

 

Router(config-if)#ip inspect firewall in

 

 

Router(config-if)#

 

Step 3

 

 

exit

Returns to global configuration mode.

 

Example:

 

 

Router(config-if)# exit

 

 

Router(config)#

 

Step 4

 

 

interface type number

Enters interface configuration mode for the

 

 

outside network interface on your router.

 

Example:

 

 

Router(config)# interface fastethernet 0

 

 

Router(config-if)#

 

Step 5

 

 

ip access-group{access-list-number

Assigns the defined ACLs to the outside

 

access-list-name} {in out}

interface on the router.

 

Example:

 

 

Router(config-if)#ip access-group 103 in

 

 

Router(config-if)#

 

Step 6

 

 

exit

Returns to global configuration mode.

 

Example:

 

 

Router(config-if)# exit

 

 

Router(config)#

 

 

 

 

Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide

8-4

OL-6426-02

 

 

Page 100
Image 100
Cisco Systems OL-6426-02 manual Apply Access Lists and Inspection Rules to Interfaces, Inside interface on the router