6-52
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter 6 Managing Policy Objects
Creating Access Control List Objects
Identifying OSPF route redistribution.
Filtering users of a community string using SNMP.
Configuring VLAN ACLs for a Catalyst 6500/7600 device.
Related Topics
Creating Access Control List Objects, page 6-49
Understanding Access Rule Address Requirements and How Rules Are Deployed, page 16-5
Creating Policy Objects, page 6-9
Understanding Networks/Hosts Objects, page 6-74
Step 1 Choose Manage > Policy Objects to open the Policy Object Manager (see Policy Object Manager,
page 6-4).
Step 2 From the Object Type selector, select Access Control Lists.
The Access Control List page appears.
Step 3 Click the Standard tab.
Step 4 Right-click inside the work area, then select New Object.
The Add Standard Access List dialog box appears (see Add or Edit Access List Dialog Boxes,
page 6-55).
Step 5 Enter a name for the object and optionally a description of the object.
Step 6 Right-click inside the table, then select Add.
The Add Standard Access Control Entry dialog box appears.
Step 7 Create the access control entry:
If you choose Access Control Entry for Type, specify the characteristics of the traffic that you want
to match and whether you are permitting or denying the traffic. Enter the source addresses whence
the traffic originates and select logging options. For detailed information about the fields on the
dialog box, see Add and Edit Standard Access Control Entry Dialog Boxes, page 6-59.
If you choose ACL Ob ject, select the object in the available objects list and click >> to add it to the
list of selected objects.
Step 8 Click OK to save your changes.
The dialog box closes and you return to the Add Standard Access List dialog box. The new entry is
shown in the table. If necessary, select it and click the up or down buttons to position it at the desired
location.
Step 9 (Optional) Under Category, select a category to help you identify this object in the Objects table. See
Using Category Objects, page 6-12.
Step 10 Click OK to save the object.
Creating Web Access Control List Objects
Web ACLs, also referred to as WebVPN, let you establish a secure, remote-access VPN tunnel to the
security appliance using a web browser. There is no need for either a software or hardware client.
WebVPN provides easy access to a broad range of web resources and both web-enabled and legacy