Table of Contents
Advertisement
Edit Firewall Policy/ACL
Alert Action
Audit Action
Timeout
Program Number
Wait Time
Add Fragment application entry
Cisco Router and Security Device Manager Version 2.2 User's Guide
6-12
One of the following:
default-on—Leave as default. Default value is on.
•
on—Enable alert.
•
off—Disable alert.
•
One of the following:
default-off—Leave as default. Default value is off.
•
on—Enable audit trail.
•
off—Disable audit trail.
•
Specify how long the router should wait before blocking return traffic for this
protocol or application. The field is prefilled with the default value.
Enter a single program number in this field.
You can optionally specify how many minutes to allow subsequent RPC
connections from the same source to be made to the same destination address and
port. The default wait time is zero minutes.
In this window, you can add a fragment entry to an inspection rule that you are
configuring in the Edit Firewall Policy/ACL window, and you can specify Alert,
Audit, and Timeout settings. A fragment entry sets the maximum number of
unreassembled packets that the router should accept before dropping them.
Chapter 6
Firewall Policy
OL-4015-08
Advertisement
Table of Contents
Troubleshooting
