Filter
Top Products
CHAPTER
1-1
Cisco ASA Series Firewall CLI Configuration Guide
1
Configuring a Service Policy Using the Modular
Policy Framework
Service policies using Modular Policy Framework provide a consistent and flexible way to configure
ASA features. For example, you can use a service policy to create a timeout configuration that is specific
to a particular TCP application, as opposed to one that applies to all TCP applications. A service policy
consists of multiple actionsapplied to an interface or applied globally.
This chapter includes the following sections:
• Information About Service Policies, page 1-1
• Licensing Requirements for Service Policies, page 1-6
• Guidelines and Limitations, page 1-6
• Default Settings, page 1-8
• Task Flows for Configuring Service Policies, page 1-9
• Identifying Traffic (Layer 3/4 Class Maps), page 1-12
• Defining Actions (Layer 3/4 Policy Map), page 1-15
• Applying Actions to an Interface (Service Policy), page 1-17
• Monitoring Modular Policy Framework, page 1-18
• Configuration Examples for Modular Policy Framework, page 1-18
• Feature History for Service Policies, page 1-22
Information About Service Policies
This section describes how service policies work and includes the following topics:
• Supported Features, page 1-2
• Feature Directionality, page 1-2
• Feature Matching Within a Service Policy, page 1-3
• Order in Which Multiple Feature Actions are Applied, page 1-4
• Incompatibility of Certain Feature Actions, page 1-5
• Feature Matching for Multiple Service Policies, page 1-6