Ip inspect name inspectionname udp [timeout seconds

With TCP and UDP inspection, packets entering the network must match the corresponding packet that previously exited the network. The entering packets must have the same source/destination addresses and source/destination port numbers as the exiting packet (but reversed); otherwise, the entering packets are blocked at the interface.

With UDP inspection configured, replies are only permitted back in through the firewall if they are received within a configurable time after the last request was sent out. (You configure this time with the ip inspect udp idle-time command.)

0 0

Post a comment