Contents
xii
Cisco Security Appliance Command Line Configuration Guide
OL-10088-01
Adding an Extended Access List 16-5
Extended Access List Overview 16-5
Allowing Special IP Traffic through the Transparent Firewall 16-6
Adding an Extended ACE 16-6
Adding an EtherType Access List 16-8
Adding a Standard Access List 16-9
Adding a Webtype Access List 16-10
Simplifying Access Lists with Object Grouping 16-10
How Object Grouping Works 16-10
Adding Object Groups 16-11
Adding a Protocol Object Group 16-11
Adding a Network Object Group 16-12
Adding a Service Object Group 16-12
Adding an ICMP Type Object Group 16-13
Nesting Object Groups 16-14
Using Object Groups with an Access List 16-15
Displaying Object Groups 16-16
Removing Object Groups 16-16
Adding Remarks to Access Lists 16-16
Scheduling Extended Access List Activation 16-17
Adding a Time Range 16-17
Applying the Time Range to an ACE 16-18
Logging Access List Activity 16-18
Access List Logging Overview 16-18
Configuring Logging for an Access Control Entry 16-19
Managing Deny Flows 16-20
CHAPTER
17 Applying NAT 17-1
NAT Overview 17-1
Introduction to NAT 17-2
NAT Control 17-3
NAT Types 17-5
Dynamic NAT 17-5
PAT 17-6
Static NAT 17-7
Static PAT 17-7
Bypassing NAT when NAT Control is Enabled 17-8
Policy NAT 17-9
NAT and Same Security Level Interfaces 17-12
To Next Page
Loading...
Need help?
General