EasyManuals Logo

Cisco 5510 - ASA SSL / IPsec VPN Edition Configuration Guide

Cisco 5510 - ASA SSL / IPsec VPN Edition
1822 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #802 background imageLoading...
Page #802 background image
37-18
Cisco ASA 5500 Series Configuration Guide using ASDM
OL-20339-01
Chapter 37 Configuring Inspection of Basic Internet Protocols
FTP Inspection
• Server Criterion Values—Specifies to match on the FTP server.
–
Regular Expression—Lists the defined regular expressions to match.
–
Manage—Opens the Manage Regular Expressions dialog box, which lets you configure regular
expressions.
–
Regular Expression Class—Lists the defined regular expression classes to match.
–
Manage—Opens the Manage Regular Expression Class dialog box, which lets you configure
regular expression class maps.
• User Name Criterion Values—Specifies to match on the FTP user.
–
Regular Expression—Lists the defined regular expressions to match.
–
Manage—Opens the Manage Regular Expressions dialog box, which lets you configure regular
expressions.
–
Regular Expression Class—Lists the defined regular expression classes to match.
–
Manage—Opens the Manage Regular Expression Class dialog box, which lets you configure
regular expression class maps.
Modes
The following table shows the modes in which this feature is available:
FTP Inspect Map
The FTP Inspect Map dialog box is accessible as follows:
Configuration > Global Objects > Inspect Maps > FTP
The FTP pane lets you view previously configured FTP application inspection maps. An FTP map lets
you change the default configuration values used for FTP application inspection.
FTP command filtering and security checks are provided using strict FTP inspection for improved
security and control. Protocol conformance includes packet length checks, delimiters and packet format
checks, command terminator checks, and command validation.
Blocking FTP based on user values is also supported so that it is possible for FTP sites to post files for
download, but restrict access to certain users. You can block FTP connections based on file type, server
name, and other attributes. System message logs are generated if an FTP connection is denied after
inspection.
Fields
• FTP Inspect Maps—Table that lists the defined FTP inspect maps.
• Add—Configures a new FTP inspect map. To edit an FTP inspect map, choose the FTP entry in the
FTP Inspect Maps table and click Customize.
• Delete—Deletes the inspect map selected in the FTP Inspect Maps table.
Firewall Mode Security Context
Routed Transparent Single
Multiple
Context System
••••—

Table of Contents

Other manuals for Cisco 5510 - ASA SSL / IPsec VPN Edition

Preview: Cli Configuration Guide
Cli Configuration Guide2164 pages
Preview: Hardware Installation Guide
Hardware Installation Guide82 pages
Preview: Getting Started Guide
Getting Started Guide208 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco 5510 - ASA SSL / IPsec VPN Edition and is the answer not in the manual?

Cisco 5510 - ASA SSL / IPsec VPN Edition Specifications

General IconGeneral
BrandCisco
Model5510 - ASA SSL / IPsec VPN Edition
CategoryFirewall
LanguageEnglish

Related product manuals