5-13
Cisco Router and Security Device Manager Version 2.2 Users Guide
OL-4015-08
Chapter5 Create Firewall
How Do I...
The Edit a Rule dialog box appears.
Step5 The Rule Entry field shows each of the source IP/destination IP/service
combinations that are permitted or denied by the rule. Click the rule entry that you
want to configure to generate log entries.
Step6 Click Edit.
Step7 In the rule entry dialog box, check the Log Matches Against this Entry check
box.
Step8 Click OK to close the dialog boxes you have displayed.
The rule entry that you just modified will now generate log entries whenever a
connection is attempted from the IP address range and services that the define the
rule entry.
Step9 Repeat Step 4 through Step 8 for each rule entry that you want to configure to
generate log entries.
Once your logging configuration is complete, follow the steps below to view your
firewall activity:
Step1 From the toolbar, select Monitor Mode.
Step2 From the left frame, select Firewall Status.
In the Firewall statistics, you can verify that your firewall is configured and view
how many connection attempts have been denied.
The table shows each router log entry generated by the firewall, including the time
and the reason that the log entry was generated.
How Do I Configure a Firewall on an Unsupported Interface?
SDM can configure a firewall on an interface type unsup ported by SDM. Before
you can configure the firewall, you must first use the router CLI to configure the
interface. The interface must have, at a minimum, an IP address configured, and
it must be working. For more information on how to configure an interface using
the CLI, refer to the Software Configuration Guide for your router.