37-46
Cisco ASA 5500 Series Configuration Guide using ASDM
OL-20339-01
Chapter 37 Configuring Inspection of Basic Internet Protocols
IPSec Pass Through Inspection
Fields
• IPSec Pass Through Inspect Maps—Table that lists the defined IPSec Pass Through inspect maps.
• Add—Configures a new IPSec Pass Through inspect map. To edit an IPSec Pass Through inspect
map, select the IPSec Pass Through entry in the IPSec Pass Through Inspect Maps table and click
Customize.
• Delete—Deletes the inspect map selected in the IPSec Pass Through Inspect Maps table.
• Security Level—Select the security level (high or low).
–
Low—Default.
Maximum ESP flows per client: Unlimited.
ESP idle timeout: 00:10:00.
Maximum AH flows per client: Unlimited.
AH idle timeout: 00:10:00.
–
High
Maximum ESP flows per client:10.
ESP idle timeout: 00:00:30.
Maximum AH flows per client: 10.
AH idle timeout: 00:00:30.
–
Customize—Opens the Add/Edit IPSec Pass Thru Policy Map dialog box for additional settings.
–
Default Level—Sets the security level back to the default level of Low.
Modes
The following table shows the modes in which this feature is available:
Add/Edit IPSec Pass Thru Policy Map (Security Level)
The Add/Edit IPSec Pass Thru Policy Map (Security Level) dialog box is accessible as follows:
Configuration > Global Objects > Inspect Maps > IPSec Pass Through>
IPSec Pass Through Inspect Map > Basic View
The Add/Edit IPSec Pass Thru Policy Map pane lets you configure the security level and additional
settings for IPSec Pass Thru application inspection maps.
Fields
• Name—When adding an IPSec Pass Thru map, enter the name of the IPSec Pass Thru map. When
editing an IPSec Pass Thru map, the name of the previously configured IPSec Pass Thru map is
shown.
• Security Level—Select the security level (high or low).
Firewall Mode Security Context
Routed Transparent Single
Multiple
Context System
••••—
To Next Page
Loading...
Need help?
General
