Interesting thing about stateful firewall (cisco zone base firewall)
by Cyrus Lok on Monday, March 29, 2010 at 10:26pm
I found something interesting about zone based firewall.
R1 has configured a zone firewall. R2 tried to ping R1’s interface, icmp drops (of course)
R1 pings to R2, reply from R2 (of course), during the first 5s R2 can ping R1….
What’s the time for information in state table be removed?
cyruslab 