Filter
Top Products
47-21
Cisco ASA 5500 Series Configuration Guide using ASDM
Chapter 47 Configuring Inspection of Basic Internet Protocols
FTP Inspection
Add/Edit FTP Policy Map (Details)
The Add/Edit FTP Policy Map (Details) dialog box is accessible as follows:
Configuration > Global Objects > Inspect Maps > FTP > FTP Inspect Map > Advanced View
The Add/Edit FTP Policy Map pane lets you configure the security level and additional settings for FTP
application inspection maps.
Fields
• Name—When adding an FTP map, enter the name of the FTP map. When editing an FTP map, the
name of the previously configured FTP map is shown.
• Description—Enter the description of the FTP map, up to 200 characters in length.
• Security Level—Shows the security level and file type filtering settings to configure.
• Parameters—Tab that lets you configure the parameters for the FTP inspect map.
–
Mask greeting banner from the server—Masks the greeting banner from the FTP server to
prevent the client from discovering server information.
–
Mask reply to SYST command—Masks the reply to the syst command to prevent the client from
discovering server information.
• Inspections—Tab that shows you the FTP inspection configuration and lets you add or edit.
–
Match Type—Shows the match type, which can be a positive or negative match.
–
Criterion—Shows the criterion of the FTP inspection.
–
Value—Shows the value to match in the FTP inspection.
–
Action—Shows the action if the match condition is met.
–
Log—Shows the log state.
–
Add—Opens the Add FTP Inspect dialog box to add an FTP inspection.
–
Edit—Opens the Edit FTP Inspect dialog box to edit an FTP inspection.
–
Delete—Deletes an FTP inspection.
–
Move Up—Moves an inspection up in the list.
–
Move Down—Moves an inspection down in the list.
Modes
The following table shows the modes in which this feature is available:
Add/Edit FTP Map
The Add/Edit FTP Map dialog box is accessible as follows:
Firewall Mode Security Context
Routed Transparent Single
Multiple
Context System
••••—