Support User Manuals

Cisco Systems CL-28826-01 Security Camera User Manual

Open as PDF

of 2616

17-80

User Guide for Cisco Security Manager 4.4

OL-28826-01

Chapter 17 Managing Firewall Inspection Rules

Configuring Protocols and Maps for Inspection

Criterion Specifies which criterion of SIP traffic to match.

• Called Party—Matches the called party as specified in the To

header.

• Calling Party—Matches the calling party as specified in the From

header.

• Content Length—Matches the Content Length header.

• Content Type—Matches the Content Type header.

• IM Subscriber—Matches the SIP Instant Messenger subscriber.

• Message Path—Matches the SIP Via header.

• Third Party Registration—Matches the requester of a third-party

registration.

• URI Length—Matches a URI in the SIP headers.

• Request Method—Matches the SIP request method.

Type Specifies whether the map includes traffic that matches or does not

match the criterion. For example, if Doesn’t Match is selected on the

string “example.com,” then any traffic that contains “example.com” is

excluded from the map.

• Matches—Matches the criterion.

• Doesn’t Match—Does not match the criterion.

Action

(Policy Map only)

The action you want the device to take for traffic that matches the

defined criteria.

Variable Fields

The following fields vary based on what you select in the Criterion field. This list is a super-set of the

fields you might see.

Value The regular expression you want to evaluate. You can select one of the

following:

• Regular Expression—The regular expression object that defines

the regular expression you want to use for pattern matching. Enter

the name of the object. You can click Select to choose the object

from a list of existing ones or to create a new regular expression

object.

• Regular Expression Group—The regular expression group object

that defines the regular expression you want to use for pattern

matching. Enter the name of the object. You can click Select to

choose the object from a list of existing ones or to create a new

regular expression group object.

URI Type The type of URI to match, either SIP or TEL.

Greater Than Length The length in bytes of the evaluated field. The criterion matches if the

length is greater than the specified number, and does not match if the

field is less than the specified number.

Table 17-47 SIP Class and Policy Maps Add and Edit Match Condition and Action Dialog Boxes

Element Description

previous next