Filter
Top Products
12-13
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter 12 Introduction to Firewall Services
Managing Your Rules Tables
For complete information on how to specify services, see Understanding and Specifying Services and
Service and Port List Objects, page 6-86.
For detailed information on editing firewall rules cells, see Editing Rules, page 12-9.
Navigation Path
Do any of the following in a rules policy that includes services:
• Right-click a Services cell in a rules table and select Edit Services. The data replaces the content of
the selected cells.
• Select an entry in a Services cell and select Edit <Entry>. The data replaces the selected entry.
• Select multiple rules, right-click a Services cell, and select Add Services. The data is appended to
the data already in the cell.
Tip For inspection rules, services appear in the Traffic Match column and only for rules where the traffic
matches source, destination, and port.
Adding or Editing Interfaces or Zones Cells in Rules Tables
Use the Add or Edit Interfaces (or Zones) dialog box to edit the interfaces or zones for which the rule is
defined. For detailed information on editing firewall rules cells, see Editing Rules, page 12-9.
• When editing interfaces, you can enter any combination of specific interface names or interface
roles. You can enter more than one value by separating the items with commas. Enter the names or
click Select to select the interfaces and roles from a list, or to create new roles. An interface must
already be defined to appear on the list.
When you deploy the policy to the device, interface roles are replaced by actual interface names,
and only to interfaces that are actually configured on the device. To see which interfaces will
actually be selected by a rule, right-click the Interfaces cell and select Show Interfaces.
• When editing zones, you can select only one interface role, and you cannot select individual
interfaces. The interface roles are used to create zones for zone based firewall rules. To see the
interfaces that will belong to the zone, right-click the Zones cell and select Show Zone Contents.
For more information about interface roles and selecting interfaces, see the following topics:
• Understanding Interface Role Objects, page 6-67
• Specifying Interfaces During Policy Definition, page 6-70
Navigation Path
Do any of the following in a rules policy that includes interfaces or zones:
• Right-click an Interfaces or Zones cell in a rules table and select Edit Interfaces, Edit Zones, or
similar command. The data replaces the content of the selected cells.
• Select an entry in an Interfaces cell and select Edit <Entry>. The data replaces the selected entry.
You cannot edit an entry in a zone.
• Select multiple rules, right-click an Interfaces cell, and select Add Interfaces. The data is appended
to the data already in the cell. You cannot add entries to a zone.