« CiscoWorks LMS...Shoot me now. | Main | Jeremy and VMWare ESX Server...Love at First Sight! »
September 4, 2008
IOS 12.4(6) Turns Your Router Into an ASA
Okay...maybe it doesn't do EVERYTHING the ASA does...but it's definitely a step forward in the Firewall Feature Set of the IOS. Routers running this version of code now support zone-based policies, which really helps with multi-interface restrictions (rather than just one outside & one inside interface with individual access list applications). Likewise, it now supports application inspection to catch those scandalous peer-to-peer programs.
Check out the whole scoop here.
Much thanks to Joshua Walton for sending me an email on this and slightly brightening the most dismal CiscoWorks installation day I've ever had. Oh look - CD #12 is done...on to 13.
Posted by JC at September 4, 2008 3:11 PM
Trackback Pings
TrackBack URL for this entry:
http://www.cioara.org/cgi-bin/mt-tb.cgi/295
Comments
You missed the all important "T". It is IOS version 12.4(6)T that introduces this feature. Your article implies that this is available in the mainline 12.4 train.
Posted by: Anonymous at September 6, 2008 10:11 AM
I've often wondered if Cisco is attempting to get rid of the ASA by including all these features into the router.
I personally hope not. I really like the ASA's, and they're much more affordable for small business than the 800 series router.
--cheers
Posted by: James at September 7, 2008 6:47 PM
Why God why? CiscoWorks is horrible. I've moved on to OpenNMS (even runs on Windows!) and takes about 45 minutes to install and get reporting data.
Posted by: Jim at September 9, 2008 9:44 AM
Thanks Jeremy, This is what I am looking for these days. Pretty cool URL filtering options for my cisco router.
Posted by: Mark at September 24, 2008 12:52 AM