09-20-2013 01:05 PM - edited 03-11-2019 07:41 PM
Does the default inspection policy (without edit) provide Application Inspection ? or Stateful Inspection only ?
I believe this is the default inspection policy (MPF) on an ASA 5505:
class-map inspection_defaultmatch default-inspection-trafficpolicy-map type inspect dns preset_dns_mapparametersmessage-length maximum 512policy-map global_policyclass inspection_defaultinspect dns preset_dns_mapinspect ftpinspect h323 h225inspect h323 rasinspect rshinspect rtspinspect esmtpinspect sqlnetinspect skinnyinspect sunrpcinspect xdmcpinspect sipinspect netbiosinspect tftpservice-policy global_policy global
thx
Solved! Go to Solution.
09-20-2013 01:58 PM
This is a stateful inspection by default except for the dns
For application inspection policies (layer 7 inspection) you have to define seperate layer 7 policies for each protocol and define it in the stateful inspection policy map
Sent from Cisco Technical Support Android App
09-20-2013 01:58 PM
This is a stateful inspection by default except for the dns
For application inspection policies (layer 7 inspection) you have to define seperate layer 7 policies for each protocol and define it in the stateful inspection policy map
Sent from Cisco Technical Support Android App
09-20-2013 02:00 PM
Check this out for more info
http://www.cisco.com/en/US/docs/security/asa/asa72/configuration/guide/inspect.html
Sent from Cisco Technical Support Android App
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide