16-30
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter 16 Managing Firewall Access Rules
Using Automatic Conflict Detection
Annotation Display Options button
Click the Annotation Display Options button to open the Annotation Display Options dialog box,
which is used for selecting the types of conflicts that should be reported. For an explanation of the types
of conflicts, see Understanding Automatic Conflict Detection, page 16-25.
Disabling a certain type of conflict does not remove those rules from the access rules table; it only turns
off the rule conflict notification for those types of conflicts. To hide or show only conflicting rules of a
certain type, you can use the table filter feature. For example, if you only wanted to see redundant and
partially redundant rule conflicts, you could set up the following advanced filter:
You can hover the mouse pointer over the Annotation Display Options button to view a summary of the
conflicts for each type and also to see which conflict types are disabled.
Note The Annotation Display Options that you select remain in effect until those options are changed. Be sure
to verify these settings whenever you are working on resolving conflicts.
Conflict Navigation Bar
Use the Conflict navigation bar to navigate to a conflict. You can use the Previous Conflict and Next
Conflict buttons on the Conflict navigation bar to step through the conflicts. You can also click on one
of the conflict locators in the Conflict navigation bar to move directly to a specific conflict. This is
particularly helpful when working with large rules tables.
Tip Hovering over a conflict locator provides a quick summary of the conflict.
The conflict locators are color-coded as follows:
Red locators—Redundant objects
Blue locators—Redundant and partially redundant rules
Black locators—Shadowed and partially shadowed rules