beautypg.com

Cisco ASA 5505 User Manual

Page 928

background image

44-18

Cisco ASA 5500 Series Configuration Guide using the CLI

Chapter 44 Configuring Inspection for Voice and Video Protocols

RTSP Inspection

Not all options are available for each match or class command. See the CLI help or the command
reference for the exact options available.

The drop keyword drops all packets that match.

The send-protocol-error keyword sends a protocol error message.

The drop-connection keyword drops the packet and closes the connection.

The mask keyword masks out the matching portion of the packet.

The reset keyword drops the packet, closes the connection, and sends a TCP reset to the server
and/or client.

The log keyword, which you can use alone or with one of the other keywords, sends a system log
message.

The rate-limit message_rate argument limits the rate of messages.

You can specify multiple class or match commands in the policy map. For information about the order
of class and match commands, see the

“Defining Actions in an Inspection Policy Map” section on

page 33-2

.

Step 7

To configure parameters that affect the inspection engine, perform the following steps:

a.

To enter parameters configuration mode, enter the following command:

hostname(config-pmap)# parameters

hostname(config-pmap-p)#

b.

To restrict usage on reserve port for media negotiation, enter the following command:

hostname(config-pmap-p)# reserve-port-protect

c.

To set the limit on the URL length allowed in the message, enter the following command:

hostname(config-pmap-p)# url-length-limit length

Where the length argument specifies the URL length in bytes (0 to 6000).

The following example shows a how to define an RTSP inspection policy map.

hostname(config)# regex badurl1 www.url1.com/rtsp.avi

hostname(config)# regex badurl2 www.url2.com/rtsp.rm

hostname(config)# regex badurl3 www.url3.com/rtsp.asp

hostname(config)# class-map type regex match-any badurl-list

hostname(config-cmap)# match regex badurl1

hostname(config-cmap)# match regex badurl2

hostname(config-cmap)# match regex badurl3

hostname(config)# policy-map type inspect rtsp rtsp-filter-map

hostname(config-pmap)# match url-filter regex class badurl-list

hostname(config-pmap-p)# drop-connection

hostname(config)# class-map rtsp-traffic-class

hostname(config-cmap)# match default-inspection-traffic

hostname(config)# policy-map rtsp-traffic-policy

hostname(config-pmap)# class rtsp-traffic-class

hostname(config-pmap-c)# inspect rtsp rtsp-filter-map

hostname(config)# service-policy rtsp-traffic-policy global