Cisco Systems ASA 5580 Network Router User Manual

Open as PDF

of 2086

47-51

Cisco ASA 5500 Series Configuration Guide using ASDM

Chapter 47 Configuring Inspection of Basic Internet Protocols

NetBIOS Inspection

By default, the Enforcement tab is selected and the following options are selected:

• Permit only known extension headers

• Enforce extension header order

When Permit only known extension headers is selected, the ASA verifies the IPv6 extension header.

When Enforce extension header order is selected, the order of IPv6 extension headers as defined in the

RFC 2460 Specification is enforced.

When these options are specified and an error is detected, the ASA drops the packet and logs the action.

Step 4 To configuring matching in the extension header, click the Header Matches tab.

Step 5 Click Add to add a match. The Add IPv6 Inspect dialog box appears.

Step 6 Select a criterion for the match.

When you select any of the following criteria, you can configure to the ASA to drop or log when an IPv6

packet arrives mathcing the criterion:

• Authentication (AH) header

• Destination Options header

• Encapsulating Security Payload (ESP) header

• Fragment header

• Hop-by-Hop Options header

When Routing header is selected and an IPv6 routing extension header is detected, the ASA takes the

specified action when the routing type is matched or a number when the specified routing type range is

matched.

When Header count is selected and an IPv6 routing extension header is detected, the ASA takes the

specified action when number of IPv6 extension headers in the packet is more than the specified value.

When Routing header address count is selected, and an IPv6 routing extension header is detected, the

ASA takes the specified action when the number of addresses in the type 0 routing header is more than

the value you configure.

Step 7 Click OK to save the match criterion.

Step 8 Click OK to save the IPv6 inspect map.

NetBIOS Inspection

This section describes the IM inspection engine. This section includes the following topics:

• NetBIOS Inspection Overview, page 47-52

• Select NETBIOS Map, page 47-52

• “NetBIOS Inspect Map” section on page 47-52

• “Add/Edit NetBIOS Policy Map” section on page 47-53

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

Cisco Systems ASA 5580 Network Router User Manual