17-19
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter17 Managing Firewall Inspection Rules
Inspection Rules Page
Navigation Path
Go to the Add or Edit Inspect/Application FW Rule Wizard, Inspected Protocol Page, page 17-16, select
ESMTP in the protocols table, and click Configure.
Configure Fragments Dialog Box
Use the Configure Fragments dialog box to edit settings for fragment inspection on IOS devices.
Navigation Path
Go to the Add or Edit Inspect/Application FW Rule Wizard, Inspected Protocol Page, page 17-16, select
fragment in the protocols table, and click Configure.
Field Reference
Configure IMAP or POP3 Dialog Boxes
Use the Configure IMAP or POP3 dialog boxes to edit settings for Internet Message Access Protocol
(IMAP) or Post Office Protocol 3 (POP3) inspection on IOS devices.
IMAP is a method for accessing electronic mail or bulletin board messages that are kept on a mail
server that may be shared. It permits a client email program to access remote messages as though
they were local.
POP3 is used to receive email that is stored on a mail server. Unlike IMAP, POP retrieves mail only
from a remote host.
Navigation Path
Go to the Add or Edit Inspect/Application FW Rule Wizard, Inspected Protocol Page, page 17-16, select
IMAP or POP3, and click Configure.
Table17-7 Configure Fragments Dialog Box
Element Description
Maximum Fragments The maximum number of unassembled packets for which state
information (structures) is allocated by Cisco IOS software.
Unassembled packets are packets that arrive at the router interface
before the initial packet for a session. Values are 0-10000 state entries.
The default is 256.
Note Memory is allocated for the state structures, and setting this
value to a larger number may cause memory resources to be
exhausted.
Timeout (sec) The number of seconds that a packet state structure remains active.
When the timeout value expires, the router drops the unassembled
packet, freeing that structure for use by another packet. Values are
1-1000. The default timeout value is one second.