Zone based firewall configuration

I am watching CBT Nuggets CCNA Security series and just saw Jeremy's ZBF configuration video. SDM sent over 300 lines of commands to the router. How does this work out in the real world? When you get up to CCSP are you expected to have that kind of stuff memorized on your exams?

Find more posts tagged with

Comments

instant000

ehnde wrote: »

I am watching CBT Nuggets CCNA Security series and just saw Jeremy's ZBF configuration video. SDM sent over 300 lines of commands to the router. How does this work out in the real world? When you get up to CCSP are you expected to have that kind of stuff memorized on your exams?

LOL.

Some of that stuff those SDM wizards does is "extra" like you probably saw tons of "inspects" it added for you. While "extra" it is usually an attempt to provide you more security.

Try this, it goes over zone based firewalls, and the sample configs at the very bottom of the page are indeed less than 300 lines

Zone-Based Policy Firewall Design and Application Guide - Cisco Systems

SteveO86

There are some more ZBF links from this previous thread
http://www.techexams.net/forums/ccna-security/63085-zone-based-firewall-policies.html

ehnde

Thanks guys, reading over those links now