qid iscw 178 - Printable Version

+- Forums (
+-- Forum: CCNP (
+--- Forum: CCNP TSHOOT 300-135 (
+--- Thread: qid iscw 178 (/thread-256.html)

qid iscw 178 - baloo247 - 11-24-2009

guidelines from cisco say -

on interface where traffic initiates:
inspect rule on the inward directions on where you want inspection to occur.

so why the answer - the command ip inspect <name> out must be applied to int fa0/1

given that fa0/1 is the untrusted interface and traffic hasnt initiated there is this only to act as a inspect pair???