24-63
Cisco ASDM User Guide
OL-16647-01
Chapter 24 Configuring Application Layer Protocol Inspection
Inspect Map Field Descriptions
Endpoint mapper service lookup: enabled
Endpoint mapper service lookup timeout: 00:05:00
–
Medium—Default.
Pinhole timeout: 00:01:00
Endpoint mapper service: not enforced
Endpoint mapper service lookup: disabled.
–
High
Pinhole timeout: 00:01:00
Endpoint mapper service: enforced
Endpoint mapper service lookup: disabled
–
Customize—Opens the Add/Edit DCERPC Policy Map dialog box for additional settings.
–
Default Level—Sets the security level back to the default level of Medium.
Modes
The following table shows the modes in which this feature is available:
Add/Edit DCERPC Policy Map
The Add/Edit DCERPC Policy Map pane lets you configure the security level and parameters for
DCERPC application inspection maps.
Fields
• Name—When adding a DCERPC map, enter the name of the DCERPC map. When editing a
DCERPC map, the name of the previously configured DCERPC map is shown.
• Description—Enter the description of the DCERPC map, up to 200 characters in length.
• Security Level—Select the security level (high, medium, or low).
–
Low
Pinhole timeout: 00:02:00
Endpoint mapper service: not enforced
Endpoint mapper service lookup: enabled
Endpoint mapper service lookup timeout: 00:05:00
–
Medium—Default.
Pinhole timeout: 00:01:00
Endpoint mapper service: not enforced
Endpoint mapper service lookup: disabled.
Firewall Mode Security Context
Routed Transparent Single
Multiple
Context System
• • • •—