In one custom dynamic application, the inside client connects to an outside server using TCP port
4444 and negotiates return client traffic in the port range of 5000 to 5500. The server then starts
streaming UDP data to the client on the negotiated port in the specified range. Which Cisco ASA
feature or command supports this custom dynamic application?
A.
TCP normalizer
B.
TCP intercept
C.
ip verify command
D.
established command
E.
tcp-map and tcp-options commands
F.
set connection advanced-options command
Explanation:
http://www.cisco.com/en/US/docs/security/asa/asa72/configuration/guide/int5505.html
Established command—This command allows return connections from a lower security host to a
higher security host if there is already an established connection from the higher level host to the
lower level host.
For same security interfaces, you can configure established commands for both directions.