CHAP TER
56-1
User Guide for Cisco Security Manager 4.4
OL-28826-01
56
Configuring Service Policy Rules on Firewall
Devices
This section describes configuring service policy rules. Service policies provide a consistent and flexible
way to configure certain security appliance features, including priority queuing, application inspection,
and QoS (quality of service). For example, you can use a service policy to create a timeout configuration
that is specific to a particular TCP application, as opposed to one that applies to all TCP applications.
Note Detailed information regarding the range and implementation of particular service policies can be found
on cisco.com. For example, the following references may be helpful:
Using Modular Policy Framework
QoS Configuration and Monitoring
This chapter contains the following topics:
About Service Policy Rules, page 56-1
About TCP State Bypass, page 56-3
Priority Queues Page, page 56-4
IPS, QoS, and Connection Rules Page, page 56-5
Configuring Traffic Flow Objects, page56-16
Configuring TCP Maps, page 56-20

About Service Policy Rules

Service policy rules encompass these features:
TCP and general connection settings (including TCP State Bypass; see About TCP State Bypass,
page 56-3)
Content security control (CSC)
Application inspection
Intrusion Prevention Services
QoS queuing and policing