CBAC does not protect against attacks originating from within the protected network. CBAC only detects and protects against attacks that travel through the Cisco IOS Firewall.

Turn on logging and the audit trail to provide a record of network access through the firewall, including unauthorized access attempts. To configure logging and audit trail functions, use the logging and ip inspect audit-trail commands in global configuration mode. Example 15-1 shows the enabling of logging and audit trail functions on a router.

0 0

Post a comment