Support User Manuals

Cisco Systems ASA 5580 Webcam User Manual

Open as PDF

of 754

11-23

Cisco ASA Series Firewall ASDM Configuration Guide

Chapter 11 Configuring Inspection of Basic Internet Protocols

FTP Inspection

• Description—Enter the description of the FTP map, up to 200 characters in length.

• Security Level—Select the security level (medium or low).

–

Low

Mask Banner Disabled

Mask Reply Disabled

–

Medium—Default.

Mask Banner Enabled

Mask Reply Enabled

–

File Type Filtering—Opens the Type Filtering dialog box to configure file type filters.

–

Default Level—Sets the security level back to the default level of Medium.

• Details—Shows the Parameters and Inspections tabs to configure additional settings.

Add/Edit FTP Policy Map (Details)

The Add/Edit FTP Policy Map (Details) dialog box is accessible as follows:

Configuration > Global Objects > Inspect Maps > FTP > FTP Inspect Map > Advanced View

The Add/Edit FTP Policy Map pane lets you configure the security level and additional settings for FTP

application inspection maps.

Fields

• Name—When adding an FTP map, enter the name of the FTP map. When editing an FTP map, the

name of the previously configured FTP map is shown.

• Description—Enter the description of the FTP map, up to 200 characters in length.

• Security Level—Shows the security level and file type filtering settings to configure.

• Parameters—Tab that lets you configure the parameters for the FTP inspect map.

–

Mask greeting banner from the server—Masks the greeting banner from the FTP server to

prevent the client from discovering server information.

–

Mask reply to SYST command—Masks the reply to the syst command to prevent the client from

discovering server information.

• Inspections—Tab that shows you the FTP inspection configuration and lets you add or edit.

–

Match Type—Shows the match type, which can be a positive or negative match.

–

Criterion—Shows the criterion of the FTP inspection.

–

Value—Shows the value to match in the FTP inspection.

–

Action—Shows the action if the match condition is met.

–

Log—Shows the log state.

–

Add—Opens the Add FTP Inspect dialog box to add an FTP inspection.

–

Edit—Opens the Edit FTP Inspect dialog box to edit an FTP inspection.

–

Delete—Deletes an FTP inspection.

–

Move Up—Moves an inspection up in the list.

–

Move Down—Moves an inspection down in the list.

previous next