21-39
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter 21 Managing Zone-based Firewall Rules
Configuring Content Filtering Maps for Zone-based Firewall Policies
Related Topics
• Understanding Map Objects, page 6-72
• Configuring Content Filtering Maps for Zone-based Firewall Policies, page 21-35
• Understanding the Zone-based Firewall Rules, page 21-3
Field Reference
Table 21-14 Add or Edit N2H2 or WebSense Parameter Map Dialog Boxes
Element Description
Name The name of the policy object. A maximum of 40 characters is allowed.
Description A description of the policy object. A maximum of 200 characters is
allowed.
URL Filtering Server Table The list of URL filtering servers and their attributes.
• To add servers, click the Add button and fill in the Add External
Filter dialog box (see Add or Edit External Filter Dialog Box,
page 21-40).
• To edit a server, select it and click the Edit button.
• To delete a server, select it and click the Delete button.
Enable Alert Whether to generate stateful packet inspection alert messages on the
console.
Enable Allow Mode Whether to allow or block URL requests when the URL filtering
process does not have connectivity to a URL filtering database. When
allow-mode is on, all unmatched URL requests are allowed; when off,
all unmatched URL requests are blocked.
Block Page The web page you want to present to the user if the user attempts to
access a page that you block. You can select from the following:
• None—The user is not presented with any information.
• Message—The user is presented with the text message you enter in
the edit box.
• Redirect URL—The user is redirected to the URL you enter in the
edit box.
Source Interface The interface whose IP address should be used as the source IP address
when a TCP connection is established between the system and the URL
filtering server.
Maximum Cache Entries The maximum number of entries to store in the categorization cache.
The default is 5000.
Cache Life Time How long, in hours, an entry remains in the cache table. The default is
24.
Maximum Requests The maximum number of pending requests. The range is from 1 to
2147483647. The default is 1000.
Maximum Responses The maximum number of HTTP responses that can be buffered. The
range is from 0 and 20000. The default is 200.