Cisco Systems OL-16647-01 Network Router User Manual

Open as PDF

of 1230

16-9

Cisco ASDM User Guide

OL-16647-01

Chapter 16 Configuring Management Access

Configuring a Management Interface

Step 7 (Optional) To set ICMP unreachable message limits, set the following options. Increasing the rate limit,

along with enabling the “Decrement time to live for a connection” option on the Configuration > Firewall

> Service Policy Rules > Rule Actions > Connection Settings dialog box, is required to allow a traceroute

through the security appliance that shows the security appliance as one of the hops.

• Rate Limit—Sets the rate limit of unreachable messages, between 1 and 100 messages per second.

The default is 1 message per second.

• Burst Size—Sets the burst rate, between 1 and 10. This keyword is not currently used by the system,

so you can choose any value.

Step 8 Click Apply.

The ICMP rule is added to the end of the ICMP table and the change is saved to the running

configuration.

Configuring a Management Interface

A high-security interface can be identified to manage the security appliance. When a management

interface is assigned, ASDM can run on it with a fixed IP address over an IPSec VPN tunnel. This is

possible if VPN is configured on the security appliance and the external interface is using a dynamically

assigned IP address. The management interface is also used when accessing and managing the security

appliance securely from home using the VPN client.

To configure a management interface, perform the following steps:

Step 1 From the Configuration > Device Management > Management Access > Management Interface

pane, choose the interface with the highest security (the inside interface) from the Management Access

Interface drop-down list.

Step 2 Click Apply.

The management interface is assigned and the change is saved to the running configuration.

Configuring SNMP

This section describes how to configure SNMP, and includes the following topics:

• Information About SNMP, page 16-9

• Configuring the SNMP Agent, page 16-18

• Configuring SNMP Traps, page 16-19

Information About SNMP

The Simple Network Management Protocol (SNMP) enables the monitoring of network devices from a

central location. The security appliance supports network monitoring using SNMP Versions 1 and 2c, as

well as traps and SNMP read access, but does not support SNMP write access.

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

Cisco Systems OL-16647-01 Network Router User Manual