Hi all The following command is used to block TCP sessions that doesn't belong to the existing sessions that the firewall is aware off.
"ip inspect tcp block-non-session" The default action is to allow non-existing TCP sessions. If we allow, non-existing TCP session , is that not breaking the firewall? By default it should block right? Please share your thoughts. With regards Kings
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
