Cisco Systems OL-16647-01 Network Router User Manual

Open as PDF

of 1230

24-39

Cisco ASDM User Guide

OL-16647-01

Chapter 24 Configuring Application Layer Protocol Inspection

Class Map Field Descriptions

An inspection class map matches application traffic with criteria specific to the application, such as a

URL string. You then identify the class map in the inspect map and enable actions. The difference

between creating a class map and defining the traffic match directly in the inspect map is that you can

create more complex match criteria and you can reuse class maps. The applications that support

inspection class maps are DNS, FTP, H.323, HTTP, IM, and SIP.

This section describes how to configure inspection class maps, and includes the following topics:

• DNS Class Map, page 24-39

• FTP Class Map, page 24-43

• H.323 Class Map, page 24-46

• HTTP Class Map, page 24-48

• IM Class Map, page 24-53

• SIP Class Map, page 24-56

DNS Class Map

The DNS Class Map panel lets you configure DNS class maps for DNS inspection.

An inspection class map matches application traffic with criteria specific to the application. You then

identify the class map in the inspect map and enable actions. The difference between creating a class

map and defining the traffic match directly in the inspect map is that you can create more complex match

criteria and you can reuse class maps. The applications that support inspection class maps are DNS, FTP,

H.323, HTTP, IM, and SIP.

Fields

• Name—Shows the DNS class map name.

• Match Conditions—Shows the type, match criterion, and value in the class map.

–

Match Type—Shows the match type, which can be a positive or negative match.

–

Criterion—Shows the criterion of the DNS class map.

–

Value—Shows the value to match in the DNS class map.

• Description—Shows the description of the class map.

• Add—Adds match conditions for the DNS class map.

• Edit—Edits match conditions for the DNS class map.

• Delete—Deletes match conditions for the DNS class map.

Modes

The following table shows the modes in which this feature is available:

Firewall Mode Security Context

Routed Transparent Single

Multiple

Context System

• • • •—

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

Cisco Systems OL-16647-01 Network Router User Manual