Context Based Access Control (CBAC) is an IOS firewall feature set similar like RACL, RACL is basically inspect L2- L4 layers only but CBAC has the capability of inspecting application layer traffic.
Now we can see the configurations
Step 1 : Create one ACL to deny all incoming traffic from the internet
Step 2 : Create inspect rule for our internal traffic
Step 3 : Applying the inspect rule
By these commands we have enabled inspection for http,https,dns traffic and the router will only allow the inspected traffic .
Verification
The Lazy Networker 
Leave a comment