1-22
Cisco ASA Series CLI Configuration Guide
Chapter 1 Configuring Inspection of Basic Internet Protocols
Instant Messaging Inspection
d. (Optional) To match a specific IM service, such as chat, file-transfer, webcam, voice-chat,
conference, or games, enter the following command:
hostname(config-cmap)# match [not] service {chat | file-transfer | webcam | voice-chat
| conference | games}
e. (Optional) To match the source login name of the IM message, enter the following command:
hostname(config-cmap)# match [not] login-name regex {class class_name | regex_name}
Where the regex regex_name argument is the regular expression you created in Step 1. The class
regex_class_name is the regular expression class map you created in Step 2.
f. (Optional) To match the destination login name of the IM message, enter the following command:
hostname(config-cmap)# match [not] peer-login-name regex {class class_name |
regex_name}
Where the regex regex_name argument is the regular expression you created in Step 1. The class
regex_class_name is the regular expression class map you created in Step 2.
g. (Optional) To match the source IP address of the IM message, enter the following command:
hostname(config-cmap)# match [not] ip-address ip_address ip_address_mask
Where the ip_address and the ip_address_mask is the IP address and netmask of the message source.
h. (Optional) To match the destination IP address of the IM message, enter the following command:
hostname(config-cmap)# match [not] peer-ip-address ip_address ip_address_mask
Where the ip_address and the ip_address_mask is the IP address and netmask of the message
destination.
i. (Optional) To match the version of the IM message, enter the following command:
hostname(config-cmap)# match [not] version regex {class class_name | regex_name}
Where the regex regex_name argument is the regular expression you created in Step 1. The class
regex_class_name is the regular expression class map you created in Step 2.
j. (Optional) To match the filename of the IM message, enter the following command:
hostname(config-cmap)# match [not] filename regex {class class_name | regex_name}
Where the regex regex_name argument is the regular expression you created in Step 1. The class
regex_class_name is the regular expression class map you created in Step 2.
Note Not supported using MSN IM protocol.
Step 4 Create an IM inspection policy map, enter the following command:
hostname(config)# policy-map type inspect im policy_map_name
hostname(config-pmap)#
Where the policy_map_name is the name of the policy map. The CLI enters policy-map configuration
mode.
Step 5 (Optional) To add a description to the policy map, enter the following command:
hostname(config-pmap)# description string
Step 6 Specify the traffic on which you want to perform actions using one of the following methods:
• Specify the IM class map that you created in Step 3 by entering the following command:
To Next Page
Loading...
Need help?
General
