21-20
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter 21 Managing Zone-based Firewall Rules
Configuring Inspection Maps for Zone-based Firewall Policies
Zone-based Firewall IM Application Class Maps: Add or Edit Match Condition Dialog Boxes
Use the Add or Edit Match Criterion dialog boxes for the various instant messenger (IM) application
classes used with zone-based firewall policies to define a match criterion and value for the class map.
You can define a match for the following types of traffic:
Any—Any type of traffic from the application except text chat traffic.
Text-chat—Text chat traffic.
Navigation Path
From the Add or Edit Class Maps dialog boxes for AOL, ICQ, MSN Messenger, Windows Messenger,
or Yahoo Messenger classes, right-click inside the table and select Add Row or right-click a row and
select Edit Row. See Configuring Class Maps for Zone-Based Firewall Policies, page 21-17.
Related Topics
Understanding Map Objects, page 6-72
Configuring Inspection Maps for Zone-based Firewall Policies, page21-15
Understanding the Zone-based Firewall Rules, page 21-3
Zone-based Firewall P2P Application Class Maps: Add or Edit Match Condition Dialog Boxes
Use the Add or Edit Match Criterion dialog boxes for the various peer-to-peer (P2P) application classes
used with zone-based firewall policies to define a match criterion and value for the class map.
Navigation Path
From the Add or Edit Class Maps dialog boxes for eDonkey, FastTrack, Gnutella, or Kazaa2 classes,
right-click inside the table and select Add Row, or right-click a row and select Edit Row. See
Configuring Class Maps for Zone-Based Firewall Policies, page 21-17.
Related Topics
Understanding Map Objects, page 6-72
Configuring Inspection Maps for Zone-based Firewall Policies, page21-15
Understanding the Zone-based Firewall Rules, page 21-3
Field Reference
Table21-4 Zone-based Firewall P2P Application Class Maps Add or Edit Match Condition Dialog
Boxes
Element Description
Criterion Choose which criterion to match:
File Transfer – Matches file-transfer traffic.
Search Filename – Matches the names of files for which the user is
searching. You can use this criterion to block users from searching
for particular files using eDonkey.
Text Chat – Matches eDonkey text chat traffic.
Type Specifies that the map includes traffic that matches the criterion.