PIX Protocol Handling

Below are the steps involved in configuring protocol handling,

  1. Create the class-map - Tell the class-map which traffic to match
  2. Create Policy-map - Assign class-map to policy map. Tell the class-map what to do to the matched traffic
  3. Assign policy map globally or to interface

Below will inspect http traffic on port 801 using, and assign it globally.

hostname(config)#class-map http_traffic
hostname(config-cmap)#match port tcp eq 801

hostname(config)#policy-map http_traffic_policy
hostname(config-pmap)#class http_traffic
hostname(config-pmap-c)#inspect http

hostname(config)#service-policy http_traffic_policy global

Tags: PIX, Cisco, Firewall