Index
IN-4
Cisco ASA 5500 Series Configuration Guide using the CLI
asymmetric routing support 63-18
attacks
DNS request for all records 57-10
DNS zone transfer 57-10
DNS zone transfer from high port 57-10
fragmented ICMP traffic 57-6, 57-9
IP fragment 57-4, 57-7
IP impossible packet 57-4, 57-7
large ICMP traffic 57-6, 57-9
ping of death 57-6, 57-9
proxied RPC request 57-10
statd buffer overflow 57-11
TCP NULL flags 57-6, 57-9
TCP SYN+FIN flags 57-6, 57-9
attributes
RADIUS C-27
username 67-80
attribute-value pairs
TACACS+ C-38
attribute-value pairs (AVP) 67-36
authentication
about 35-2
ASA 5505 as Easy VPN client 71-12
CLI access 37-19
FTP 38-3
HTTP 38-3
network access 38-2
privileged EXEC mode 37-19
Telnet 38-3
web clients 38-6
WebVPN users with digital certificates 74-28, 74-29
authorization
about 35-2
command 37-22
downloadable access lists 38-14
network access 38-11
Auto-MDI/MDIX 6-2, 7-4
auto-signon
group policy attribute for Clientless SSL VPN 67-73
username attribute for Clientless SSL VPN 67-91
Auto-Update, configuring 81-16
B
backup server attributes, group policy 67-56
Baltimore Technologies, CA server support 41-4
banner message, group policy 67-48
basic threat detection
See threat detection
before configuring KCD 74-44
bits subnet masks B-3
Black Ice firewall 67-67
Botnet Traffic Filter
actions 55-2
address categories 55-2
blacklist
adding entries 55-9
description 55-2
blocking traffic manually 55-15
classifying traffic 55-12
configuring 55-6
databases 55-2
default settings 55-6
DNS Reverse Lookup Cache
information about 55-4
maximum entries 55-4
using with dynamic database 55-10
DNS snooping 55-10
dropping traffic 55-13
graylist 55-13
dynamic database
enabling use of 55-7
files 55-3
information about 55-2
searching 55-16
updates 55-7
examples 55-19
feature history 55-22