Cisco ASA 5505 Configuration Manual page 642
Asa 5500 series
Hide thumbs
Also See for ASA 5505:
- Getting started manual (168 pages) ,
- Administrator's manual (118 pages) ,
- Hardware installation manual (82 pages)
Table of Contents
Advertisement
Configuring Access Rules
•
•
•
•
•
•
Add/Edit EtherType Rule
The Add/Edit EtherType Rules dialog box lets you add or edit an EtherType rule.
For more information about EtherType rules, see the
page
Fields
•
•
•
•
•
Configuring Management Access Rules
Access Rules specifically permit or deny traffic to or from a particular peer (or peers), while
Management Access Rules provide access control for to-the-box traffic. For example, in addition to
detecting IKE Denial of Service attacks, you can block them using management access rules.
To add a Management Access Rule, perform the following steps:
Choose Configuration > Device Management > Management Access > Management Access Rules.
Step 1
Click Add, and choose one of the following actions:
Step 2
•
•
The appropriate Add Management Access Rule dialog box appears.
Step 3
From the Interface drop-down list, choose an interface on which to apply the rule.
In the Action field, click one of the following:
Step 4
•
•
In the Source field, choose Any, or click the ellipsis (...) to browse for an address.
Step 5
In the Service field, add a service name for rule traffic, or click the ellipsis (...) to browse for a service.
Step 6
Cisco ASA 5500 Series Configuration Guide using ASDM
30-10
No—Indicates the order of evaluation for the rule.
Action—Permit or deny action for this rule.
Ethervalue—EtherType value: IPX, BPDU, MPLS-Unicast, MPLS-Multicast, or a 16-bit
hexadecimal value between 0x600 (1536) and 0xffff by which an EtherType can be identified.
Interface—Interface to which the rule is applied.
Direction Applied—Direction for this rule: incoming traffic or outgoing traffic.
Description—Optional text description of the rule.
30-1.
Action—Permit or deny action for this rule.
Interface—Interface name for this rule.
Apply rule to—Direction for this rule: incoming traffic or outgoing traffic.
Ethervalue—EtherType value: BPDU, IPX, MPLS-Unicast, MPLS-Multicast, any (any value
between 0x600 and 0xffff), or a 16-bit hexadecimal value between 0x600 (1536) and 0xffff by which
an EtherType can be identified.
Description—Optional text description of the rule.
Add Management Access Rule
Add IPv6 Management Access Rule
Permit (permits this traffic)
Deny (denies this traffic)
Chapter 30
"Information About Access Rules" section on
Configuring Access Rules
OL-20339-01
- Quick Links:
- Starting Asdm
- Downloading the Asdm Launcher
Hide quick links:
Advertisement
Chapters
Table of Contents
