Cisco OL-4015-08 User Manual page 159

Chapter 6 Firewall Policy
Make Changes to Access Rules and Inspection Rules as Necessary
OL-4015-08
Rules applied to Originating traffic are indicated by a right arrow. An
icon on the From interface traffic line indicates the presence of a rule
filtering traffic inbound to the router. An icon placed on the To
interface traffic line indicates a rule filtering traffic outbound from the
router. If you place the mouse over this icon, SDM will display the
names of the rules that have been applied.
Rules applied to Returning traffic are indicated by a left arrow. An
icon on the To interface traffic line indicates the presence of a rule
filtering traffic inbound to the router. An icon on the From interface
traffic line indicates the presence of a rule filtering traffic outbound
from the router. The names of the rules applied are displayed when
you place the cursor over this icon.
Although the icons are shown on a particular interface in the diagram,
a firewall policy might contain access control entries that affect traffic
that is not represented by the diagram. For example, an entry that
contains the wildcard icon in the Destination column, indicating any
network or host, might apply to traffic exiting interfaces other than the
one represented by the currently selected To interface.
The policy panel shows the details of the rules applied to the selected traffic flow.
The Policy panel is updated when the From and To interfaces are selected and
when the Traffic Diagram is toggled between Originating Traffic focus and
Returning Traffic focus.
ThePolicy panel is blank if an access rule that contains no entries has been
associated with an interface. For example, if a rule name was associated with an
interface using the CLI, but entries for the rule were not created, this panel would
be blank. If the Policy Panel is blank, you can use the Add button to create entries
for the rule.
Cisco Router and Security Device Manager Version 2.2 User's Guide
Edit Firewall Policy/ACL
6-5