Filter
Top Products
34-17
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter 34 Using Map View
Displaying Your Network on the Map
• When you select an IPS device, the nodes that represent virtual sensors defined on the device are
highlighted.
• You can view a list of the security contexts contained in an ASA, firewall, or FWSM device, or the
virtual sensors contained in an IPS device, by right-clicking the node and selecting Show
Containment. This command also shows the service modules in a device that has them.
• When you select a security context node, all its ancestor device nodes are highlighted.
• When you select a virtual sensor, the device on which it is defined is highlighted.
Using Map Objects To Represent Network Topology
You can add map elements to a map that represent objects (such as devices and links) that Security
Manager does not manage. These nodes are called map objects. You can use map objects to create a more
useful representation of your network topology. (If you want to add a managed device, see Displaying
Managed Devices on the Map, page 34-16.)
You can add layer 3 links between any map elements, whether they are device nodes, map nodes, or a
combination of both types.
Tip To delete a map object, right-click the object and select Delete Map Object.
Step 1 Select Map > Add Map Object. The Add Map Object dialog box appears (see Add Map Object and
Node Properties Dialog Boxes, page 34-18).
Step 2 Do one of the following:
• If you are adding a map object based on the definition of an Security Manager policy object, click
Copy Policy Object to open the Select Policy Object Dialog Box, page 34-18. Then, select the type
of object (AAA server, network/host, PKI enrollment), click Select to choose the object, then click
OK in the Select Policy Object dialog box. Information from the policy object is entered in the Add
Map Object dialog box.
The name of the object is used as the map object name, but you can edit this if desired.
• If you are adding a map object that is not based on a policy object, enter a name for the map object
in the Name field.
Step 3 Select the type of object that the node represents from the Type list. If you selected a policy object, the
type is pre-selected, but you can change the selection.
Step 4 (Optional) Add interfaces to the node by doing the following for each interface:
a. Click Add to open the Interface Properties Dialog Box, page 34-19. If items already appear in the
list, you can select them and click Edit to change them.
b. Enter an interface name, IP address, and network mask, then click OK.
Step 5 Click OK. The map object is added to the center of the map. Move it to the desired location.