CSA rule priority

Latest

Network management best practices
(Un)Finally!
Complex L2-security config
ASA 8.4 NAT examples
Nested IP SLA config

Polls

How could I improve this site?

	More configs and tips
	Change site design
	More public news
	Pictures would be nice
	More useful tools
	Change the hosting provider. It sucks!
	Just relax, man

CCIEvault Feed

CSA rule priority

Written by Alexei Spirin

Friday, 11 January 2008 20:46

CSA can do several actions on all security events that happens in OS. All actions or rules have the certain priority which are required to remeber when we configure security policies on CSA MC

1 High Priority Terminate Process
2 High Priority Deny
3 Allow
4 Query User (Terminate)
5 Query User (Deny)
6 Query User (Allow)
7 Terminate Process
8 Deny
9 Default Action Allow
10 Add Process to Application Class
11 Remove Process from Application Class
12 Monitor

Taken from CSA MC configuration guide

Last Updated on Saturday, 25 October 2008 09:24

Add comment

JComments

Popular

Latest

Polls