A

AAA (authentication, authorization, and accounting)

accounting, 172 authentication, 171 authorization, 172 cut-through proxy, 178 fallback authentication, 175 fallback support, 175 local authorization, 177 MAC address authentication, 181 overview, 171 two step authentication, 175 ABRs (Area Backbone Routers), 140 access control lists. See ACLs, access-list command, 126 ACE (application control engine), 313 ACEs (access control entries), 127 acknowledgement (ACK) flag, 350 ACLs (access control lists)

access list commit, 128

access list resources, monitoring, 129

access lists, 185, 377 ACEs (access control entries), 127 ACL types, 125 definition, 5, 100

EtherType Access Control Lists, 35 EtherType object groupings, 131 and higher-level interfaces, 54 inbound and outbound traffic flow control examples, 131 IPv6 configuration, 334 nesting type object groupings, 130 network type object groupings, 130 object group and access list configurations, 129 object groups, 128 optimization, 464

protocol type object groupings, 129 service type object groupings, 130 traffic filtering, 125 uses in FWSM, 125 Active/Active mode, 198 Active/Standby Failover Configuration, 205 Active/Standby mode, 197 ActiveX controls, security risks, 235 ActiveX filtering, 241 Adaptive Security Appliance (ASA), 25 Adaptive Security Device Manager (ASDM), 249 Address Resolution Protocol (ARP) traffic, 36 admin context configurations, 112 admin-context, 75 allocate-interface command, 76 Anycast IPv6 addressing, 329 Anycast RP, 267 application engines, 187, 189 application inspection, 481. See also modular policy application layer, 7 application protocol inspection ARP inspection, 230 FTP (File Transfer Protocol), 222 HTTP (Hypertext Transfer Protocol), 220 primary functions, 219 supported application inspection engines, 224-225, 229 application/proxy firewalls, 7 areas, 139

ARP (Address Resolution Protocol), 36, 229

ARP table entries, displaying, 232 ARP test, 202

AS external ASBR summary link LSAs, 141 ASA (Adaptive Security Appliance), 25 ASBRs (Autonomous System Routers), 140 ASDM (Adaptive Security Device Manager), 249, 368

assignment of interfaces, 92 asymmetric routing avoiding through firewalls, 290 configuration, 297 and firewall design, 297 NAT and, 287 support between two contexts in active/active failover mode, 296 in Active/Active mode, 295 in active/standby mode, 294 in FWSM, 292, 294

in multiple context routed mode, 298-301 with firewalls, 287, 289 without firewalls, 287 Auto-RP, 267 Autosecure, 101 availability, 384

Was this article helpful?

0 0

Post a comment