Hi All, I have the following questions and appreciate your correct solutions how we face those in the real lab exam..
1) if a question asked you to configure nat for allow ftp/http or dns doctoring etc.. do we need to configure to allow those traffic (http/ftp/dns etc.) on the firewall outside interface in addition to the question stated NAT configurations..? 2. in ZBF if the question said traffic (any ip traffic) from zone x to zone y should be allowed...how do we know whether its the class-map with pass or class map with inspect..?? We know that pass will not have return traffic allow and not state table, but how do we understand whether it should be configured for pass or inspect..? 3) again in ZBF...if the question does not ask anything about from Inside to outside, should we still inspect the traffic from inside to outside..? thanks Pemasiri
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
