Sean Settle wrote
"The answer would be yes, order matters on a PIX (examples use access-list
configuration, but the same is true of conduits/outbound rulesets as well)."
In the case of "Outbound/apply" statements (which Cisco recomends converting
to access-list statements to maintain future compatability) the pix orders
them by most specific match. "Show config" will list your config "as-is". A
"Show Outbound" command will produce a list of your outbound statements as
the Pix orders them. The order is optimized by the Pixes ASA which Brian
discussed previously. HTH
Ken Claussen MCSE CCNA CCA
[EMAIL PROTECTED]
"The Mind is a Terrible thing to Waste!"
_______________________________________________
Firewalls mailing list
[EMAIL PROTECTED]
http://lists.gnac.net/mailman/listinfo/firewalls
