Cisco Systems CL-28826-01 Security Camera User Manual

Open as PDF

of 2616

17-8

User Guide for Cisco Security Manager 4.4

OL-28826-01

Chapter 17 Managing Firewall Inspection Rules

Inspection Rules Page

Note With the release of Security Manager 4.4 and versions 9.0 and higher of the ASA, the separate policies

and objects for configuring IPv4 and IPv6 inspection rules were “unified,” meaning one set of inspection

rules in which you can use either IPv4 or IPv6 addresses, or a mixture of both. (See Policy Object

Changes in Security Manager 4.4, page 1-9 for additional information.) In Policy view, IPv4 and unified

versions of the inspection policy type are provided. In addition, a utility that you can use to convert

existing IPv4 policies is provided (see Converting IPv4 Rules to Unified Rules, page 12-28). The

following descriptions apply to apply to all versions of the inspection rule table, except where noted.

Inspection rules are processed after your access rules. Thus, any traffic denied by an access rule is never

inspected.

Read the following topics before you configure inspection rules:

• Understanding Inspection Rules, page 17-1

• Choosing the Interfaces for Inspection Rules, page 17-2

• Selecting Which Protocols To Inspect, page 17-3

• Understanding Access Rule Requirements for Inspection Rules, page 17-4

• Using Inspection To Prevent Denial of Service (DoS) Attacks on IOS Devices, page 17-4

• Configuring Inspection Rules, page 17-5

Tip Disabled rules are shown with hash marks covering the table row. When you deploy the configuration,

disabled rules are removed from the device. For more information, see Enabling and Disabling Rules,

page 12-20.

Navigation Path

To access the Inspection Rules page, do one of the following:

• (Device view) Select a device, then select Firewall > Inspection Rules from the Policy selector.

• (Policy view) Select Firewall > Inspection Rules from the Policy Type selector. Create a new policy

or select an existing one.

• (Map view) Right-click a device and select Edit Firewall Policies > Inspection Rules.

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

Cisco Systems CL-28826-01 Security Camera User Manual