Access-List replacing Stateful Inspection Firewall
I am configuring a Nortel SR1004 which is has a very similar CLI to Cisco and I am wondering if Access-list would be a good solution over the built in firewall. I cannot find out a sample config to go with for configuring the Nortel Firewall feature so I was thinking as a shortcut I could just create a ACL that denies all inbound traffic and provides selected ports such as IChat, and PCAnywhere. I need to get this done because my boss refuses to pay bandwidth.com our ISP another 150 for a firewall config and I am going crazy trying to figure out the firewall features. Is this a good idea?