Cisco ROUTER-SDM-CD User Manual page 219

Chapter 9 Firewall Policy
Service Area Entry Fields
OL-4015-12
Service area buttons are disabled if the rule is read-only. A rule is read-only when
it contains syntax that Cisco SDM does not support. Read-only rules are indicted
by this icon: .
If there is an existing standard rule that filters the returning traffic flow to which
you are applying the firewall, Cisco SDM informs you that it will convert the
standard access rule to an extended rule.
The following table describes the icons and other data in the Service Area entries.
Field Description
Action Whether the traffic will
be permitted or denied
Source/
Network or host
Destination
address, or any host or
network.
Service Type of service
filtered.
Log Whether or not denied
traffic is logged.
Cisco Router and Security Device Manager 2.5 User's Guide
Edit Firewall Policy/ACL
Icons Meaning
Permit source traffic
Deny source traffic
The address of a network
The address of a host
Any network or host
Examples: TCP, EIGRP, UDP,
GRE. See IP
Examples: Telnet, http, FTP.
See TCP Services.
Examples: SNMP, bootpc,
RIP. See UDP
Internet Group Management
Protocol (IGMP).
Examples: echo-reply,
host-unreachable. See
Message Types.
Log denied traffic. To
configure logging for firewalls
see Firewall
Services.
Services.
ICMP
Log.
9-9