user manual

ManualsBrandsCisco Systems ManualsNetwork RouterNetwork Router OL-16647-01

721

722

723

724

725

726

727

728

729

730

27-12

Cisco ASDM User Guide

OL-16647-01

Chapter 27 Configuring Advanced Firewall Protection

Configuring IP Audit

–

Attack—Sets the policy type as attack.

–

Information—Sets the policy type as informational.

• Action—Sets one or more actions to take when a packet matches a signature. If you do not choose

an action, then the default policy is used.

–

Alarm—Generates a system message showing that a packet matched a signature. For a complete

list of signatures, see IP Audit Signature List.

–

Drop—Drops the packet.

–

Reset—Drops the packet and closes the connection.

Modes

The following table shows the modes in which this feature is available:

IP Audit Signatures

The IP Audit Signatures pane lets you disable audit signatures. You might want to disable a signature if

legitimate traffic continually matches a signature, and you are willing to risk disabling the signature to

avoid large numbers of alarms.

For a complete list of signatures, see IP Audit Signature List.

Fields

• Enabled—Lists the enabled signatures.

• Disabled—Lists the disabled signatures.

• Disable—Moves the selected signature to the Disabled pane.

• Enable—Moves the selected signature to the Enabled pane.

Modes

The following table shows the modes in which this feature is available:

Firewall Mode Security Context

Routed Transparent Single

Multiple

Context System

• • • •—

Firewall Mode Security Context

Routed Transparent Single

Multiple

Context System

• • • •—