1. Manuals
  2. Brands
  3. Cisco Manuals
  4. Software
  5. 4700M
  6. Configuration manual

Configuring A Layer 3 And Layer 4 Class Map - Cisco 4700M Configuration Manual

Application control engine appliance security
Hide thumbs Also See for 4700M:
Table of Contents

Advertisement

Chapter 3
Configuring Application Protocol Inspection

Configuring a Layer 3 and Layer 4 Class Map

OL-16202-01
Configuring a Layer 3 and Layer 4 Application Protocol Inspection Traffic Policy
host1/Admin(config)# class-map match-all L4_CLASS
host1/Admin(config-cmap)# match access-list ACL1
You can create a Layer 3 and Layer 4 class map to classify network traffic that
passes through the ACE to perform an applicable application protocol inspection
policy by using the class-map command in configuration mode.
You can have multiple match commands in a single class map to specify the
matching criteria. For example, you can configure class maps to define multiple
access group or port commands in a group that you then associate with an
application protocol inspection policy. The match-all and match-any keywords
determine how the ACE evaluates the operations for multiple match statements
when multiple match criteria exist in a class map.
The syntax of this command is as follows:
class-map [match-all | match-any] map_name
The keywords, arguments, and options are as follows:
match-all | match-any—(Optional) Determines how the ACE evaluates
Layer 3 and Layer 4 network traffic when multiple match criteria exist in a
class map. The class map is considered a match if the match commands meet
one of the following conditions.
match-all —(Default) All of the match criteria listed in the class map are
satisfied to match the network traffic class in the class map, typically,
match commands of different types.
match-any—Only one of the match criteria listed in the class map is
satisfied to match the network traffic class in the class map, typically,
match commands of the same type.
map_name—Name assigned to the class map. Enter an unquoted text string
with no spaces and a maximum of 64 alphanumeric characters.
The CLI displays the class map configuration mode. To classify network traffic
that passes through the ACE for application protocol inspection, include one or
more of the following commands to configure the match criteria for the class map:
Cisco 4700 Series Application Control Engine Appliance Security Configuration Guide
3-93

Advertisement

Table of Contents
loading

Related Manuals for Cisco 4700M

Related Content for Cisco 4700M

This manual is also suitable for:

4700 series

Table of Contents