40-11
Cisco ASA 5500 Series Configuration Guide using ASDM
OL-20339-01
Chapter 40 Configuring Inspection for Management Application Protocols
GTP Inspection
–
Delete—Deletes an GTP inspection.
–
Move Up—Moves an inspection up in the list.
–
Move Down—Moves an inspection down in the list.
Modes
The following table shows the modes in which this feature is available:
Add/Edit GTP Map
The Add/Edit GTP Inspect dialog box lets you define the match criterion and value for the GTP inspect
map.
Fields
• Match Type—Specifies whether traffic should match or not match the values.
For example, if No Match is selected on the string “example.com,” then any traffic that contains
“example.com” is excluded from the class map.
• Criterion—Specifies which criterion of GTP traffic to match.
–
Access Point Name—Match on access point name.
–
Message ID—Match on the message ID.
–
Message Length—Match on the message length
–
Version—Match on the version.
• Access Point Name Criterion Values—Specifies an access point name to be matched. By default, all
messages with valid APNs are inspected, and any APN is allowed.
–
Regular Expression—Lists the defined regular expressions to match.
–
Manage—Opens the Manage Regular Expressions dialog box, which lets you configure regular
expressions.
–
Regular Expression Class—Lists the defined regular expression classes to match.
–
Manage—Opens the Manage Regular Expression Class dialog box, which lets you configure
regular expression class maps.
–
Action—Drop.
–
Log—Enable or disable.
• Message ID Criterion Values—Specifies the numeric identifier for the message that you want to
match. The valid range is 1 to 255. By default, all valid message IDs are allowed.
–
Value—Specifies whether value is an exact match or a range.
Equals—Enter a value.
Range—Enter a range of values.
Firewall Mode Security Context
Routed Transparent Single
Multiple
Context System
••••—
To Next Page
Loading...
Need help?
General
