Putting It All Together
Figure 5-4 depicts a simple CBAC book for attention a web server in the centralized network. CBAC inspection
can be activated on centralized or alien interfaces. Access account 101 shows that HTTP cartage that originates from an
external arrangement that is alien to the web server is permitted. All added cartage is absolutely denied. Traffic
originating from the centralized arrangement (protected zone) will canyon through. Maintaining affair table and a
corresponding activating ACL access will be punched in ACL 101 to acquiesce all abiding traffic.
Figure 5-4. Putting It All Together