Edit Firewall Policy
Things You Must do Before Viewing Information in this Window
Expanding and Collapsing the Display of a Policy
Traffic Classification
ID
Source
clients-servers-policy (clients to servers)
1
any
Cisco Router and Security Device Manager 2.5 User's Guide
9-18
Expanding and Collapsing the Display of a Policy
•
Adding a New Rule to a Policy
•
Adding a New Zone Policy
•
Reordering Rules Within a Policy
•
Copying and Pasting a Rule
•
Displaying the Rule Flow Diagram
•
Applying Your Changes
•
Discarding Your Changes
•
This window is empty if no zone, zone-pairs, or
configured. Create a basic configuration containing these elements by going to
Configure > Firewall and ACL > Create Firewall and completing the Advanced
Firewall wizard. After you have done this, you can create additional zones, zone
pairs and policies as needed by going to Configure > Additional Tasks > Zones
to configure zones, and to Additional Tasks > Zone Pairs to configure additional
zone pairs.
To create the policy maps that the zone pairs are to use, go to Configure >
Additional Tasks > C3PL. Click the Policy Map branch to display additional
branches which enable you to create policy maps and the class maps that define
traffic for the policy maps.
When the display of a policy is collapsed, only the policy name and the source and
destination zones are displayed. To expand the display of the policy to show the
rules that make up the policy, click the + button to the left of the policy name. An
expanded view of a firewall policy might look similar to the following:
Destination
any
policy
Action
Service
tcp
Permit Firewall
Chapter 9
Firewall Policy
maps have been
Rule Options
OL-4015-12