CBAC(Context-Based Access Control) 명령어 CBAC 기본 설정 명령어 conf t ip inspect name [CBAC_NAMA] tcp // 내부→외부로 나갈때 TCP 패킷은 임시 ACL을 생성하여 상단의 추가함 // 외부→내부로 응답이 올 땐 임시 ACL을 보고 허용됨 ip inspect name [CBAC_NAMA] udp ip inspect name [CBAC_NAMA] icmp end conf t interface fa1/0 ip inspect [CBAC_NAME] out // 인터페이스에 CBAC Outbound적용 no ip unreachables // 외부→내부로 ICMP 패킷을 송신하면 "unreachables"가 뜨는데 보안상 취약해 "Time Out"이 뜨게 설정 end CBAC TCP 중 HTTP만 허용하는 명령어 conf t ip inspect name [CBAC_NAME] http audit-trail on // 내부에서 외부로 ...
![[ACL] CBAC 명령어(Cisco)](https://blogimgs.pstatic.net/nblog/mylog/post/og_default_image_160610.png)
#
AccessControlList
#
CiscoCBAC설정
#
CiscoCBAC명령어
#
CiscoCBACConfig
#
CBAC설정
#
CBAC명령어
#
CBACConfig
#
CBAC
#
ACL
#
ContextBasedAccessControl
원문 링크 : [ACL] CBAC 명령어(Cisco)
![[MPLS-TE] Differentiated Services(MAM 및 RDM)](https://mblogthumb-phinf.pstatic.net/MjAyMjA3MTBfMTE1/MDAxNjU3NDYwNjg4OTEz.UYnPhYrsN4SS4HkdxM_0NDT_G5Q16NBMeGnfy66MHUMg.L9O36mZwzCjG9-2gXbN5b000iXX9NiExO3krewwCpxcg.PNG.choiyoonjun111/image.png?type=w2)
![[EIGRP] EIGRP DUAL, Unequal-Cost Load Balancing](https://mblogthumb-phinf.pstatic.net/MjAyMjA4MjJfMjI3/MDAxNjYxMDk2NDM5MzY2.LzF1pkPYvsl2Z5N7F9WHPovJHDexGlQAf9W8973xCZgg.vFSZFJpGCDnw1-UA0TCTJk5jpPFV_xG1M2-OVmfxdEQg.PNG.choiyoonjun111/image.png?type=w2)
![[MPLS L2 VPN] VPLS Case Study - VPLS Basic Config](https://mblogthumb-phinf.pstatic.net/MjAyMjEyMDlfMzAw/MDAxNjcwNTk3ODYwODQ5.Hxbrynp-FVJ1IBnQE2WXfEj9Z5JgJ6lV8aqfcMSgJkMg.k8q5COWRiVj_YHYx-t5jh0eai7cIKbmlPTryMgie_jMg.PNG.choiyoonjun111/image.png?type=w2)
![[RIP] 명령어(Cisco)](https://mblogthumb-phinf.pstatic.net/MjAyMzAxMDJfMTMz/MDAxNjcyNjYxMDQ0NDU5.cerpgiyEm4LRpCMqbvrD3gTCRjWIiWa8tS-lg8vx1E8g.mafRzxkXr1_u_P3-PflghROMiuZpppu1wcvFimbgsAIg.PNG.choiyoonjun111/image.png?type=w2)
![[OSPF] OSPF Case Study - Redistribution(Cisco)](https://mblogthumb-phinf.pstatic.net/MjAyMzAxMTZfMzQg/MDAxNjczODY1NDk4OTYw.Ts8ssWwvtN_JUSxeu_rQ81EYMtltNjuuA6lvQhsIzYwg.IIx8MTk-qW0V07UHxawI-PqFb9e4nWot2leo6R_ejTUg.PNG.choiyoonjun111/image.png?type=w2)