15.1. Function of the Cisco IOS Firewall

Cisco IOS Firewall feature set provides a stateful security software component to the traditional IOS router software. It allows you to provide a firewall to a router environment, where a separate, hardware firewall is not feasible from either a cost or design perspective. The Cisco IOS Firewall feature set includes the following functions:

  • Stateful packet inspection for true firewall function

  • Authentication proxy to control access to resources

  • Application inspection for protection of common protocols and applications

  • Transparent firewall support

  • Protection against Distributed Denial of Service (DDOS)

  • Logging of transactions and support for audit and alerts

Here's an overview.

15.1.1. Authentication Proxy ...

Get Cisco® Network Professional's: Advanced Internetworking Guide now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.