Cisco Systems ASA 5540 Network Router User Manual


  Open as PDF
of 2086
 
47-49
Cisco ASA 5500 Series Configuration Guide using ASDM
Chapter 47 Configuring Inspection of Basic Internet Protocols
IPsec Pass Through Inspection
Add/Edit IPsec Pass Thru Policy Map (Details)
The Add/Edit IPsec Pass Thru Policy Map (Details) dialog box is accessible as follows:
Configuration > Global Objects > Inspect Maps >IPsec Pass Through >
IPsec Pass Through Inspect Map > Advanced View
The Add/Edit IPsec Pass Thru Policy Map pane lets you configure the security level and additional
settings for IPsec Pass Thru application inspection maps.
Fields
Name—When adding an IPsec Pass Thru map, enter the name of the IPsec Pass Thru map. When
editing an IPsec Pass Thru map, the name of the previously configured IPsec Pass Thru map is
shown.
Description—Enter the description of the IPsec Pass Through map, up to 200 characters in length.
Security Level—Shows the security level settings to configure.
Parameters—Configures ESP and AH parameter settings.
Limit ESP flows per client—Limits ESP flows per client.
Maximum—Specify maximum limit.
Apply ESP idle timeout—Applies ESP idle timeout.
Timeout—Specify timeout.
Limit AH flows per client—Limits AH flows per client.
Maximum—Specify maximum limit.
Apply AH idle timeout—Applies AH idle timeout.
Timeout—Specify timeout.
Modes
The following table shows the modes in which this feature is available:
Firewall Mode Security Context
Routed Transparent Single
Multiple
Context System
••••
Firewall Mode Security Context
Routed Transparent Single
Multiple
Context System
••••