Ip firewall check reflexive-traffic – ADTRAN 1000R Series User Manual
Page 421
Command Reference Guide
Global Configuration Mode Command Set
61200510L1-35E
Copyright © 2005 ADTRAN
421
ip firewall check reflexive-traffic
Use the ip firewall check reflexive-traffic command to enable the AOS stateful inspection firewall to
process traffic from a primary subnet to a secondary subnet on the same interface through the firewall. Use
the no form of this command to disable this feature.
Syntax Description
No subcommands.
Default Values
All AOS security features are disabled by default until the ip firewall command is issued at the Global
Configuration prompt. In addition, the reflexive traffic check is disabled until the ip firewall check
reflexive-traffic command is issued.
Applicable Platforms
This command applies to the NetVanta 300, 1000R, 2000, 3000, 4000, and 5000 and Total Access 900
Series units.
Command History
Release 8.1
Command was introduced.
Functional Notes
This command allows the firewall to process traffic from a primary subnet to a secondary subnet on the
same interface through the firewall. If enabled, this traffic will be processed through the access policy on
that interface and any actions specified will be executed on the traffic.
Usage Examples
The following example enables the AOS reflexive traffic check:
(config)#ip firewall check reflexive-traffic
The AOS security features must be enabled (using the ip firewall command) for the stateful
inspection firewall to be activated.