Support User Manuals

Cisco Systems CL-28826-01 Security Camera User Manual

Open as PDF

of 2616

21-39

User Guide for Cisco Security Manager 4.4

OL-28826-01

Chapter 21 Managing Zone-based Firewall Rules

Configuring Content Filtering Maps for Zone-based Firewall Policies

Related Topics

• Understanding Map Objects, page 6-72

• Configuring Content Filtering Maps for Zone-based Firewall Policies, page 21-35

• Understanding the Zone-based Firewall Rules, page 21-3

Field Reference

Table 21-14 Add or Edit N2H2 or WebSense Parameter Map Dialog Boxes

Element Description

Name The name of the policy object. A maximum of 40 characters is allowed.

Description A description of the policy object. A maximum of 200 characters is

allowed.

URL Filtering Server Table The list of URL filtering servers and their attributes.

• To add servers, click the Add button and fill in the Add External

Filter dialog box (see Add or Edit External Filter Dialog Box,

page 21-40).

• To edit a server, select it and click the Edit button.

• To delete a server, select it and click the Delete button.

Enable Alert Whether to generate stateful packet inspection alert messages on the

console.

Enable Allow Mode Whether to allow or block URL requests when the URL filtering

process does not have connectivity to a URL filtering database. When

allow-mode is on, all unmatched URL requests are allowed; when off,

all unmatched URL requests are blocked.

Block Page The web page you want to present to the user if the user attempts to

access a page that you block. You can select from the following:

• None—The user is not presented with any information.

• Message—The user is presented with the text message you enter in

the edit box.

• Redirect URL—The user is redirected to the URL you enter in the

edit box.

Source Interface The interface whose IP address should be used as the source IP address

when a TCP connection is established between the system and the URL

filtering server.

Maximum Cache Entries The maximum number of entries to store in the categorization cache.

The default is 5000.

Cache Life Time How long, in hours, an entry remains in the cache table. The default is

24.

Maximum Requests The maximum number of pending requests. The range is from 1 to

2147483647. The default is 1000.

Maximum Responses The maximum number of HTTP responses that can be buffered. The

range is from 0 and 20000. The default is 200.

previous next