67-6
Cisco ASA 5500 Series Configuration Guide using ASDM
OL-20339-01
Chapter 67 Clientless SSL VPN
ACLs
Add ACL
This pane lets you create a new ACL.
For information about access rules and ACLs (including IPv6), see the “Information About Access
Rules” section on page 30-1.
For information about configuring access rules and ACLs (including IPv6), see “Configuring Access
Rules” section on page 30-7.
For information about EtherType access rules and ACLs, see the “Configuring Access Rules” section on
page 30-7
Fields
• ACL Name—Enter a name for the ACL. Maximum 55 characters.
Add/Edit ACE
An Access Control Entry (or “access rule”) permits or denies access to specific URLs and services. You
can configure multiple ACEs for an ACL. ACLs apply ACEs in priority order, acting on the first match.
For information about access rules (including IPv6), see the “Information About Access Rules” section
on page 30-1.
For information about configuring access rules (including IPv6), see the “Configuring Access Rules”
section on page 30-7.
Fields
• Action—Permits or denies access to the specific networks, subnets, hosts, and web servers specified
in the Filter group field.
• Filter—Specifies a URL or an IP address to which you want to apply the filter (permit or deny user
access).
–
URL—Applies the filter to the specified URL.
–
Protocols (unlabeled)—Specifies the protocol part of the URL address.
–
://x—Specifies the URL of the Web page to which to apply the filter.
–
TCP—Applies the filter to the specified IP address, subnet, and port.
–
IP Address—Specifies the IP address to which to apply the filter.
–
Netmask—Lists the standard subnet mask to apply to the address in the IP Address field.
–
Service—Identifies the service (such as https, kerberos, or any) to be matched. Displays a list
of services from which you can select the service to display in the Service field.
Firewall Mode Security Context
Routed Transparent Single
Multiple
Context System
• — • ——
To Next Page
Loading...
