11-47
Cisco ASA Series Firewall ASDM Configuration Guide
Chapter 11 Configuring Inspection of Basic Internet Protocols
IPsec Pass Through Inspection
–
Default Level—Sets the security level back to the default level of Low.
Add/Edit IPsec Pass Thru Policy Map (Security Level)
The Add/Edit IPsec Pass Thru Policy Map (Security Level) dialog box is accessible as follows:
Configuration > Global Objects > Inspect Maps > IPsec Pass Through>
IPsec Pass Through Inspect Map > Basic View
The Add/Edit IPsec Pass Thru Policy Map pane lets you configure the security level and additional
settings for IPsec Pass Thru application inspection maps.
Fields
• Name—When adding an IPsec Pass Thru map, enter the name of the IPsec Pass Thru map. When
editing an IPsec Pass Thru map, the name of the previously configured IPsec Pass Thru map is
shown.
• Security Level—Select the security level (high or low).
–
Low—Default.
Maximum ESP flows per client: Unlimited.
ESP idle timeout: 00:10:00.
Maximum AH flows per client: Unlimited.
AH idle timeout: 00:10:00.
–
High
Maximum ESP flows per client:10.
ESP idle timeout: 00:00:30.
Maximum AH flows per client: 10.
AH idle timeout: 00:00:30.
–
Default Level—Sets the security level back to the default level of Low.
• Details—Shows additional parameter settings to configure.
Add/Edit IPsec Pass Thru Policy Map (Details)
The Add/Edit IPsec Pass Thru Policy Map (Details) dialog box is accessible as follows:
Configuration > Global Objects > Inspect Maps >IPsec Pass Through >
IPsec Pass Through Inspect Map > Advanced View
The Add/Edit IPsec Pass Thru Policy Map pane lets you configure the security level and additional
settings for IPsec Pass Thru application inspection maps.
Fields
• Name—When adding an IPsec Pass Thru map, enter the name of the IPsec Pass Thru map. When
editing an IPsec Pass Thru map, the name of the previously configured IPsec Pass Thru map is
shown.
• Description—Enter the description of the IPsec Pass Through map, up to 200 characters in length.
• Security Level—Shows the security level settings to configure.