Cisco 4700M Configuration Manual page 152
Application control engine appliance security
Hide thumbs
Also See for 4700M:
- Administration manual (292 pages) ,
- Upgrade manual (24 pages) ,
- Installation manual (18 pages)
Table of Contents
Advertisement
Application Protocol Inspection Configuration Quick Start Procedures
Table 3-4
Task and Command Example
1.
2.
3.
Cisco 4700 Series Application Control Engine Appliance Security Configuration Guide
3-28
Layer 3 and Layer 4 Application Protocol Inspection Quick Start
If you are operating in multiple context mode, observe the CLI prompt to
verify that you are operating in the desired context. Change to the correct
context if necessary.
host1/Admin# changeto C1
host1/C1#
For details on creating contexts, see the Cisco 4700 Series Application
Control Engine Appliance Virtualization Configuration Guide.
Enter configuration mode.
host1/Admin# config
Enter configuration commands, one per line. End with CNTL/Z
host1/Admin(config)#
Create a Layer 3 and Layer 4 class map to classify network traffic that
passes through the ACE for DNS, FTP, HTTP, ICMP, ILS, RTSP, SCCP, or
SIP application protocol inspection. If you do not specify match-all or
match-any, traffic must match all the match criteria to be classified as part
of the traffic class.
The CLI displays the class map configuration mode.
host1/Admin(config)# class-map match-all DNS_INSPECT_L4CLASS
host1/Admin(config-cmap)#
Include one or more of the match commands as part of the Layer 3 and
Layer 4 class map.
host1/Admin(config-cmap)# description DNS application protocol
inspection of incoming traffic
host1/Admin(config-cmap)# match port udp eq domain
host1/Admin(config-cmap)# exit
Chapter 3
Configuring Application Protocol Inspection
OL-16202-01
Advertisement
Table of Contents
