6-9
Cisco Router and Security Device Manager Version 2.2 Users Guide
OL-4015-08
Chapter6 Firew all Policy
Edit Firewall Policy/ACL
Applications Area
This area appears if the Cisco IOS image running on the router supports CBAC
Inspection rules. The Applications area displays the inspection rule entries that
are filtering the traffic flow. This area is updated whenever a new traffic flow is
selected. This area displays the inspection rule that will affect the selected
direction of traffic.
The Applications area is shown in the following graphic.
The Applications area will display one of the following for Originating traffic:
The inspection rule that is applied to the inbound dire ction of the From
interface, if one exists.
The inspection rule that is applied to the outbound direction of the To
interface, if From/inbound has no inspection rule applied.
Inspection rules applied to Returning traffic are not displayed.You can display
an inspection rule applied to Returning traffic by clicking Swap From and To
interfaces in the View Options menu. You can view inspection rules that are not
displayed in the Edit Firewall Policy/ACL window in the Inspection Rules
window.
Add—If there is no inspection rule, you can add the SDM default inspection rule,
or you can create and add a custom inspection rule. If you add the SDM default
inspection rule to a traffic flow with no inspection rule, it will be associated with
the inbound traffic to the From interface. You can add an entry for a specific
application whether or not an inspection rule already exists.
Edit—Click to edit a selected entry.
DeleteClick to delete a selected entry.
This icon appears when two inspection rules are found in the selected
traffic direction. SDM also displays a warning dialog, giving you the
opportunity to dissociate one of the inspection rules from the interface.