Support User Manuals

Cisco Systems CL-28826-01 Security Camera User Manual

Open as PDF

of 2616

17-60

User Guide for Cisco Security Manager 4.4

OL-28826-01

Chapter 17 Managing Firewall Inspection Rules

Configuring Protocols and Maps for Inspection

• Select an HTTP class map when creating an HTTP policy map.

• Define the match criterion, value, and action directly in an HTTP policy map.

These types of maps are used only for devices running ASA 7.2 or higher, or PIX 7.2 or higher, operating

systems.

The fields on this dialog box change based on the criterion you select and whether you are creating a

class map or policy map. You can use the following criteria:

• Request/Response Content Type Mismatch—Specifies that the content type in the response must

match one of the MIME types in the accept field of the request.

• Request Arguments—Applies the regular expression match to the arguments of the request.

• Request Body—Applies the regular expression match to the body of the request.

• Request Body Length—Specifies that the body length of the request be matched as greater than or

less than the specified number of bytes.

• Request Header Count—Specifies that the number of headers in the request be matched as greater

than or less than the specified number.

• Request Header Length—Specifies that the header length of the request be matched as greater than

or less than the specified number of bytes.

• Request Header Field—Applies the regular expression match to the header of the request.

• Request Header Field Count—Applies the regular expression match to the header of the request

based on a specified number of header fields.

• Request Header Field Length—Applies the regular expression match to the header of the request

based on a specified field length.

• Request Header Content Type—Specifies the content type to evaluate in the content-type header

field of the request.

• Request Header Transfer Encoding—Specifies the transfer encoding to evaluate in the

transfer-encoding header field of the request.

• Request Header Non-ASCII—Specifies whether there are non-ASCII characters in the header of the

request.

• Request Method—Specifies the method of the request to match.

• Request URI—Applies the regular expression match to the URI of the request.

• Request URI Length—Specifies that the URI length of the request be matched as greater than or less

than the specified number of bytes.

• Response Body ActiveX—Specifies whether there is ActiveX content in the body of the request.

• Response Body Java Applet—Specifies whether there is a Java applet in the body of the request.

• Response Body—Applies the regular expression match to the body of the response.

• Response Body Length—Specifies that the body length of the response be matched as greater than

or less than the specified number of bytes.

• Response Header Count—Specifies that the number of headers in the response be matched as greater

than or less than the specified number.

• Response Header Length—Specifies that the header length of the response be matched as greater

than or less than the specified number of bytes.

• Response Header Field—Applies the regular expression match to the header of the response.

previous next