17-86
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter 17 Managing Firewall Inspection Rules
Configuring Protocols and Maps for Inspection
Configuring Regular Expressions for Inspection Maps
Use the Add and Edit Regular Expression dialog boxes to define regular expressions for use in class and
policy inspection maps or in regular expression group policy objects.
A regular expression matches text strings either literally as an exact string or by using metacharacters so
you can match multiple variants of a text string. You can use regular expressions in various type of class
and policy inspection maps to match various target items, for example, the content of certain application
traffic such as the body text inside an HTTP packet.
Navigation Path
Select Manage > Policy Objects, then select Maps > Regular Expressions from the Object Type
selector. Right-click inside the work area, then select New Object or right-click a row and select Edit
Object.
Related Topics
Understanding Map Objects, page 6-72
Configuring Protocols and Maps for Inspection, page 17-21
Creating Policy Objects, page 6-9
Field Reference
Allow Value Override per
Device
Overrides
Edit button
Whether to allow the object definition to be changed at the device level.
For more information, see Allowing a Policy Object to Be Overridden,
page 6-18 and Understanding Policy Object Overrides for Individual
Devices, page 6-17.
If you allow device overrides, you can click the Edit button to create,
edit, and view the overrides. The Overrides field indicates the number
of devices that have overrides for this object.
Table17-51 Add and Edit Regular Expression Class Map Dialog Boxes (Continued)
Element Description
Table17-52 Add and Edit Regular Expression Dialog Boxes
Element Description
Name The name of the policy object. A maximum of 40 characters is allowed.
Description A description of the policy object. A maximum of 200 characters is
allowed.
Value The regular expression, up to 100 characters in length. For information
on the metacharacters you can use to build regular expressions, see
Metacharacters Used to Build Regular Expressions, page 17-87.
Category The category assigned to the object. Categories help you organize and
identify rules and objects. See Using Category Objects, page 6-12.