Cisco ASA Series Configuration Manual page 267
Firewall cli, asa services module, and the adaptive security virtual appliance
Hide thumbs
Also See for ASA Series:
- Cli configuration manual (2164 pages) ,
- Getting started (31 pages) ,
- Mount and connect (12 pages)
Table of Contents
Advertisement
Chapter 12
Getting Started with Application Layer Protocol Inspection
Table 12-2
Keywords
ctiqbe
dcerpc [map_name]
dns [map_name]
[dynamic-filter-snoop]
esmtp [map_name]
ftp [strict [map_name]]
gtp [map_name]
h323 h225 [map_name]
h323 ras [map_name]
http [map_name]
icmp
Protocol Keywords
Configure Application Layer Protocol Inspection
Notes
See
CTIQBE Inspection, page
See
DCERPC Inspection, page
If you added a DCERPC inspection policy map according to
Configure a DCERPC Inspection Policy Map, page
identify the map name in this command.
See
DNS Inspection, page
If you added a DNS inspection policy map according to
Configure DNS Inspection Policy Map, page
the map name in this command. The default DNS inspection
policy map name is "preset_dns_map."
To enable DNS snooping for the Botnet Traffic Filter, enter
the dynamic-filter-snoop keyword.
See
SMTP and Extended SMTP Inspection, page
If you added an ESMTP inspection policy map according to
Configure an ESMTP Inspection Policy Map, page
identify the map name in this command.
See
FTP Inspection, page
Use the strict keyword to increase the security of protected
networks by preventing web browsers from sending
embedded commands in FTP requests. See
page 13-9
for more information.
If you added an FTP inspection policy map according to
Configure an FTP Inspection Policy Map, page
identify the map name in this command.
See
GTP Inspection, page
If you added a GTP inspection policy map according to
Configure a GTP Inspection Policy Map, page
the map name in this command.
See
H.323 Inspection, page
If you added an H323 inspection policy map according to
Configure H.323 Inspection Policy Map, page
the map name in this command.
See
H.323 Inspection, page
If you added an H323 inspection policy map according to
Configure H.323 Inspection Policy Map, page
the map name in this command.
See
HTTP Inspection, page
If you added an HTTP inspection policy map according to
Configure an HTTP Inspection Policy Map, page
identify the map name in this command.
See
ICMP Inspection, page
Cisco ASA Series Firewall CLI Configuration Guide
14-1.
15-1.
15-2,
13-1.
13-3, identify
13-39.
13-42,
13-8.
Strict FTP,
13-10,
15-5.
15-7, identify
14-3.
14-6, identify
14-3.
14-6, identify
13-14.
13-16,
13-21.
12-11
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
