Configuring Mac Filtering To Allow Or Block Traffic - Cisco QuickVPN - PC Administration Manual

Sa 500 series security appliances administration guide

Hide thumbs Also See for QuickVPN - PC:

Administration manual (233 pages)

User manual (112 pages)

Administration manual (200 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

page of 244

/ 244
Contents
Table of Contents
Bookmarks

Table of Contents

Firewall Configuration

Using Other Tools to Prevent Attacks, Restrict Access, and Control Inbound Traffic

STEP 6

STEP 1

STEP 2

Cisco SA 500 Series Security Appliances Administration Guide

•

Echo Storm (ping pkts/sec): Enter the number of pings per second that will

cause the security appliance to determine that an echo storm intrusion event

is occurring. Echo storm intrusion events are not blacklisted. This value can

range between 1 and 10,000 ping packets per second. The default is 15

ping packets per second.

•

ICMP Flood [ICMP pkts./sec]: Enter the number of ICMP packets per

second, not including PING packets, that will cause the security appliance to

determine that an ICMP flood intrusion event is occurring. ICMP flood events

are not blacklisted. This value can range between 1 and 10,000 ICMP

packets per second. The default is 100 ICMP packets per second.

Click Apply to save your settings, or click Reset to revert to the saved settings.

Configuring MAC Filtering to Allow or Block Traffic

You can restrict WAN and DMZ traffic based on the MAC address of device. The

first step is to populate the list of MAC addresses to be covered by the filtering

policy. You can configure the policy either to block all MAC addresses in the list

and permit the rest, or to permit only the configured MAC addresses and block the

rest.

Click Firewall on the menu bar, and then click MAC Filtering > MAC Filtering in

the navigation tree.

The Source MAC Filter page appears.

Before you can add any addresses to the table, you must check the box to

NOTE

enable MAC filtering, and then click apply.

In the MAC Filtering Enable area, enter the following information:

•

Enable MAC Address Filtering?: Check the box to enable Source MAC

Address Filtering.

•

Policy for MAC Addresses listed below: Choose one of the following

options:

Block and permit the rest: All addresses in the MAC Addresses table

are blocked. All other addresses are allowed.

138

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

This manual is also suitable for:

Small business pro sa 500 series Small business pro sa 520 Small business pro sa 520w Small business pro sa 540

Configuring Mac Filtering To Allow Or Block Traffic - Cisco QuickVPN - PC Administration Manual

Configuring MAC Filtering to Allow or Block Traffic

Hide quick links:

Related Manuals for Cisco QuickVPN - PC

Related Content for Cisco QuickVPN - PC

This manual is also suitable for:

Table of Contents