Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1376
Views
0
Helpful
2
Replies

difference between class class-default sfr and custom match ip any any class

Go to solution
babiojd01
Level 1
Level 1

‎09-04-2016 06:21 AM - edited ‎03-12-2019 06:07 AM

I do not think this is a difference between using the default class class-map and creating an acl matching ip any any.

Can someone correct me because all FP documentation says create class-map sfr. 

policy-map global_policy

class class-default

sfr fail-open

vs

class-map sfr

match ip any any

policy-map global_policy

class sfr

sfr fail-open

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Aastha Bhardwaj
Cisco Employee
Cisco Employee

‎09-07-2016 09:29 AM

Hi ,

By default :


class-map class-default
match any

So its one and the same thing , all documents show class sfr because its easy to track and you can modify and create access-lists accordingly .

Regards,

Aastha Bhardwaj

Rate if that helps!!!

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Aastha Bhardwaj
Cisco Employee
Cisco Employee

‎09-07-2016 09:29 AM

Hi ,

By default :


class-map class-default
match any

So its one and the same thing , all documents show class sfr because its easy to track and you can modify and create access-lists accordingly .

Regards,

Aastha Bhardwaj

Rate if that helps!!!

0 Helpful

Go to solution
babiojd01
Level 1
Level 1
In response to Aastha Bhardwaj

‎09-11-2016 06:19 AM

I thought so. I imagine the access list version is useful when you want to bypass something completely from going to inspection. With the addition of pre-filters policy in FPM 6.1 i imagine you don't even need to do it that way unless its super latency sensitive.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card