Filter
Top Products
9-17
Cisco Router and Security Device Manager 2.5 User’s Guide
OL-4015-12
Chapter 9 Firewall Policy
Edit Firewall Policy
• Keep inspection rule name on <interface-name> inbound, and dissociate
inspection rule name on <interface-name> outbound—Cisco SDM will
keep one inspection rule, and dissociate the rule from the other interface.
• Keep inspection rule name on <interface-name> outbound and dissociate
inspection rule name on <interface-name> inbound—Cisco SDM will keep
one inspection rule, and dissociate the rule from the other interface.
Before you make a selection and click OK, you may want to click Cancel, then
determine if you need to add entries to the inspection rule you want to retain. You
can add entries by using the Add button in the Application area toolbar in the Edit
Firewall Policy/ACL window.
Cisco SDM Warning: Firewall
This window appears when you click Apply Firewall in the Edit Firewall
Policy/ACL window. It lists the interfaces to which it will apply a rule, and
describes the rule that it will apply.
Example:
SDM will apply firewall configuration to the following interfaces:
Inside (Trusted) Interface: FastEthernet 0/0
* Apply inbound default SDM Inspection rule
* Apply inbound ACL. Anti-spoofing, broadcast, local loopback, etc.).
Outside (Untrusted) Interface: Serial 1/0
* Apply inbound access list to deny returning traffic.
Click OK to accept these changes, or click Cancel to stop the application of the
firewall.
Edit Firewall Policy
The Edit Firewall Policy window provides a graphical view of the firewall policies
on the router and enables you to add ACLs to policies without leaving the window.
Read the procedures in the sections that follow to see how to view the information
in this window and add rules.
This help topic contains the following sections:
• Things You Must do Before Viewing Information in this Window