1. Manuals
  2. Brands
  3. Cisco Manuals
  4. Software
  5. 4700M
  6. Configuration manual

Creating A Layer 7 Sip Inspection Class Map - Cisco 4700M Configuration Manual

Application control engine appliance security
Hide thumbs Also See for 4700M:
Table of Contents

Advertisement

Chapter 3
Configuring Application Protocol Inspection

Creating a Layer 7 SIP Inspection Class Map

OL-16202-01
Defining the SIP Instant Messaging Subscriber
Defining the Message Path Taken by SIP Messages
Defining the SIP Request Methods
Defining the SIP Party Registration Entities
Defining SIP URI Checks
You can create a Layer 7 SIP inspection class map by using the class-map type
sip inspect command in configuration mode.
The syntax of this command is as follows:
class-map type sip inspect [match-all | match-any] map_name
The keywords, arguments, and options are as follows:
match-all | match-any—(Optional) Determines how the ACE performs the
inspection of SIP traffic when multiple match criteria exist in a class map.
The class map is considered a match if the match commands meet one of the
following conditions:
match-all —(Default) Network traffic needs to satisfy all of the match
criteria (implicit AND) to match the Layer 7 SIP inspection class map.
The match-all keyword is applicable only for match statements of
different SIP inspection types. For example, specifying a match-all
condition for SIP URI, SIP header, and SIP content statements in the
same class map is valid. However, specifying a match-all condition for
multiple SIP headers with the same names or multiple URLs in the same
class map is invalid.
match-any—Network traffic needs to satisfy only one of the match
criteria (implicit OR) to match the Layer 7 SIP inspection class map. The
match-any keyword is applicable only for match statements of the same
Layer 7 SIP inspection type. For example, the ACE allows you to specify
a match-any condition for SIP URI, SIP header, and SIP content
statements in the same class map and allows you to specify a match-any
condition for multiple URLs, multiple SIP headers, or multiple SIP
content statements in the same class map as long as the statements are
logical. For example, you could not have two match uri sip length
statements in the same class map, but you could have one match uri sip
length and one match uri tel length statement in one class map.
Cisco 4700 Series Application Control Engine Appliance Security Configuration Guide
Configuring a Layer 7 SIP Inspection Policy
3-75

Advertisement

Table of Contents
loading

Related Manuals for Cisco 4700M

Related Content for Cisco 4700M

This manual is also suitable for:

4700 series

Table of Contents