Support User Manuals

Cisco Systems ASA 5505 Webcam User Manual

Open as PDF

of 754

14-10

Cisco ASA Series Firewall ASDM Configuration Guide

Chapter 14 Configuring Inspection for Management Application Protocols

RADIUS Accounting Inspection

–

Message Length—Match on the message length

–

Version—Match on the version.

• Access Point Name Criterion Values—Specifies an access point name to be matched. By default, all

messages with valid APNs are inspected, and any APN is allowed.

–

Regular Expression—Lists the defined regular expressions to match.

–

Manage—Opens the Manage Regular Expressions dialog box, which lets you configure regular

expressions.

–

Regular Expression Class—Lists the defined regular expression classes to match.

–

Manage—Opens the Manage Regular Expression Class dialog box, which lets you configure

regular expression class maps.

–

Action—Drop.

–

Log—Enable or disable.

• Message ID Criterion Values—Specifies the numeric identifier for the message that you want to

match. The valid range is 1 to 255. By default, all valid message IDs are allowed.

–

Value—Specifies whether value is an exact match or a range.

Equals—Enter a value.

Range—Enter a range of values.

–

Action—Drop packet or limit rate (pps).

–

Log—Enable or disable.

• Message Length Criterion Values—Lets you change the default for the maximum message length

for the UDP payload that is allowed.

–

Minimum value—Specifies the minimum number of bytes in the UDP payload. The range is

from 1 to 65536.

–

Maximum value—Specifies the maximum number of bytes in the UDP payload. The range is

from 1 to 65536.

–

Action—Drop packet.

–

Log—Enable or disable.

• Version Criterion Values—Specifies the GTP version for messages that you want to match. The valid

range is 0-255. Use 0 to identify Version 0 and 1 to identify Version 1. Version 0 of GTP uses port

3386, while Version 1 uses port 2123. By default all GTP versions are allowed.

–

Value—Specifies whether value is an exact match or a range.

Equals—Enter a value.

Range—Enter a range of values.

–

Action—Drop packet.

–

Log—Enable or disable.

RADIUS Accounting Inspection

This section describes the IM inspection engine. This section includes the following topics:

• RADIUS Accounting Inspection Overview, page 14-11

previous next