Context-Based Access Control (CBAC)
Introduction The Context-Based Access Control (CBAC) feature of the Cisco IOS® Firewall Feature Set actively inspects the activity behind a firewall. CBAC specifies what traffic needs to be let in and what traffic needs to be let out by using access lists (in the same way that Cisco IOS uses access lists). However, CBAC access lists include ip inspect statements that allow the inspection of the protocol to make sure that it is not tampered with before the protocol goes to the systems behind the firewall. Prerequisites Requirements There are no specific requirements for this document. Components Used This document is not restricted to specific software and hardware versions. Conventions For more information on document conventions, refer to the Cisco Technical Tips Conventions . Background Information CBAC can also be used with Network Address Translation (NAT), but the configuration in this document deals primarily with pure inspection. If you ...