Filter
Top Products
7-23
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter 7 Managing FlexConfigs
Understanding FlexConfig Policies and Policy Objects
Table 7-9 Predefined PIX 6.3 Firewall FlexConfig Policy Objects
Name Description
PIX6.3_nat0_acl_compiled Generates a compiled access list for NAT 0
access-control lists.
PIX6.3_policy_nat_acl_compiled Generates a compiled access list for Policy NAT ACLs
PIX6.3_policy_static_acl_compiled Generates a compiled access list for Policy Static ACLs.
PIX_VPDN Configures a virtual private dialup network (VPDN).
Table 7-10 Predefined Router FlexConfig Policy Objects
Name Description
ROUTER_add_inspect_rules Loops through and appends inspect rules.
ROUTER_BGP_no_auto_summary Disables the auto route summary for each BGP process
by using the no auto-summary sub-command.
This FlexConfig policy object uses the list of border
gateway protocol (BGP) numbers from the
SYS_ROUTER_BGP_AS_NUMBERS_LIST system
variable.
ROUTER_BGP_untrusted_info Uses the distance bgp 255 255 255 sub-command to
make the border gateway protocol (BGP) routing
information untrusted for each BGP.
This FlexConfig policy object uses the list of BGP
numbers from the
SYS_ROUTER_BGP_AS_NUMBERS_LIST system
variable.
ROUTER_EIGRP_min_cost_routes Configures traffic to use minimum cost routes when
multiple routes have different cost routes to the same
destination network. This is done using multi-interface
load splitting on different interfaces with equal cost
paths.
This FlexConfig policy object uses the list of router
enhanced interior gateway routing protocol (EIGRP)
numbers from the
SYS_ROUTER_EIGRP_AS_NUMBERS_LIST system
variable.
Router_EIGRP_no_auto_summary Disables the auto route summary for each router
enhanced interior gateway routing protocol (EIGRP)
processes by using the no auto-summary sub-command.
This FlexConfig policy object uses the list of EIGRP
numbers from the
SYS_ROUTER_EIGRP_AS_NUMBERS_LIST system
variable.