Filter
Top Products
17-36
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter 17 Managing Firewall Inspection Rules
Configuring Protocols and Maps for Inspection
Navigation Path
In the Policy Object Manager, from the Match Condition and Action tab on the Add and Edit ESMTP
Map dialog boxes, right-click inside the table, then select Add Row or right-click a row, then select Edit
Row. See Configuring ESMTP Maps, page 17-34.
Related Topics
• Understanding Map Objects, page 6-72
• Configuring Protocols and Maps for Inspection, page 17-21
Field Reference
Table 17-18 ESMTP Policy Maps Add and Edit Match Condition and Action Dialog Boxes
Element Description
Criterion Specifies which criterion of ESMTP traffic to match. The criteria are
described above.
Type Specifies whether the map includes traffic that matches or does not
match the criterion. For example, if Doesn’t Match is selected on the
string “example.com,” then any traffic that contains “example.com” is
excluded from the map.
• Matches—Matches the criterion.
• Doesn’t Match—Does not match the criterion.
Action The action you want the device to take for traffic that matches the
defined criteria.
Variable Fields
The following fields vary based on what you select in the Criterion field. This list is a super-set of the
fields you might see.
Greater Than Length The length in bytes of the evaluated field. The criterion matches if the
length is greater than the specified number, and does not match if the
field is less than the specified number.
The dialog box indicates the valid range for the length, except for Body
Length and Header length, which can be 1 to 4294967295.
Commands The ESMTP command verbs you want to inspect.
Greater Than Count The number of evaluated items. The criterion matches if the count is
greater than the specified number, and does not match if the count is
less than the specified number.
Parameters The ESMTP EHLO reply parameters you want to inspect.