Security: Zone based policy firewall

Create parameter map parameter-map type inspect param-1 audit-trail on (Turn on audit trail) udp idle-time 60 (Set udp idle time to 1min) alert on (default is on, I cannot see this option in show run | s parameter-map, this is to turn on alert on your console) icmp idle-time 5 (ICMP idle time to be … Continue reading Security: Zone based policy firewall

Security: Zone based firewall

An alternative to ASA Supposed your customer has budget constraint, and wanted security but does not want to pay for an ASA until more budget is planned for the next work year. You can suggest to use router as firewall as a temporary solution until your customer is ready to purchase an ASA. Zone based … Continue reading Security: Zone based firewall