Filter
Top Products
21-16
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter 21 Managing Zone-based Firewall Rules
Configuring Inspection Maps for Zone-based Firewall Policies
Table 21-2 Policy Objects for Zone-based Firewall Inspection Rules
Protocol
Minimu
m IOS
Softwar
e
Version
Policy
Map
Class
Map
Paramet
er Map
Description and Match Criteria
Reference
Instant Messaging:
AOL, ICQ, MSN
Messenger,
Windows
Messenger, Yahoo
Messenger
12.4(9)
T
IM
(Zone
based
IOS)
AOL
ICQ
MSN
Messen
ger
Window
s
Messen
ger
Yahoo
Messen
ger
Protocol
Info
Inspect traffic based on the type of
service (text-chat or any other). See
Zone-based Firewall IM Application
Class Maps: Add or Edit Match
Condition Dialog Boxes, page 21-20.
You must also select a Protocol Info
parameter map to define the DNS
servers used by the traffic you are
inspecting. See Configuring Protocol
Info Parameter Maps, page 21-32.
Peer-to-peer
(P2P): eDonkey,
FastTrack,
Gnutella, Kazaa2
12.4(9)
T
P2P eDonke
y
FastTrac
k
Gnutella
Kazaa2
None Inspect traffic based on file name. See
Zone-based Firewall P2P Application
Class Maps: Add or Edit Match
Condition Dialog Boxes, page 21-20.
H.323 12.4(6)
T
H.323
(IOS)
H.323
(IOS)
None Inspect traffic based on the H.323
message type. See H.323 (IOS) Class
Maps Add or Edit Match Criterion
Dialog Boxes, page 21-21.
HTTP 12.4(6)
T
HTTP
(Zone
based
IOS)
HTTP
(IOS)
None Inspect traffic based on a wide variety
of criteria including the content of the
header or body, port misuse, and
whether the traffic includes a Java
applet. See HTTP (IOS) Class Add or
Edit Match Criterion Dialog Boxes,
page 21-21.
IMAP (Internet
Message Access
Protocol)
POP3 (Post Office
Protocol 3)
12.4(6)
T
IMAP
POP3
IMAP
POP3
None Inspect traffic based on invalid
commands or clear-text logins. See
IMAP and POP3 Class Maps Add or
Edit Match Criterion Dialog Boxes,
page 21-23.
SIP (Session
Initiation
Protocol)
12.4(6)
T
SIP
(IOS)
SIP
(IOS)
None Inspect traffic based on a wide variety
of criteria. See SIP (IOS) Class Add or
Edit Match Criterion Dialog Boxes,
page 21-24.