Chapter10 Application Security
Applications/Protocols
10-16
Cisco Router and Security Device Manager 2.5 User’s Guide
OL-4015-12
Associate Policy with an Interface
In this window, select the interface to which you want to apply the selected policy.
Also specify whether the policy is to apply to incoming traffic, to outgoing traffic,
or to traffic in both directions.
For example, if the router has FastEthernet 0/0 and FastEthernet 0/1 interfa ces,
and you want to apply the policy to the FastEthernet 0/1 inter face, on traffic
flowing in both directions, check the box next to FastEthernet 0/1, and check t he
boxes in both the Incoming and the Outgoing columns. To have only incoming
traffic inspected, only check the box in the Incoming column.
Edit Inspection Rule
Use this window to specify custom inspection rule settings for an application.
Settings made here and applied to the router’s configuration override the global
settings.
Click the Global Settings button in the Application Security window to display
the global settings for the parameters that you can set in this window. See
Timeouts and Thresholds for Inspect Parameter Maps and CBAC for more
information.

Alert Field

Choose one of the following values:
default—Use the global setting for alerts.
on—Generate an alert when traffic of this type i s encountered.
off—Do not generate an alert when traffic of this type is encountered.

Audit Field

Choose one of the following values:
default—Use the global setting for audit trails.
on—Generate an audit trail when traffic of this type is encountered.
off—Do not generate an audit trail when traffic of this type is encountered.