Filter
Top Products
10-15
Cisco ASA 5500 Series Adaptive Security Appliance Getting Started Guide
78-17611-01
Chapter 10 Configuring the CSC SSM
Scenario: Security Appliance with CSC SSM Deployed for Content Security
To simplify the initial configuration process, this procedure creates a global
service policy that diverts all traffic for the supported protocols to the CSC SSM,
both inbound and outbound. Because scanning all traffic coming through the
adaptive security appliance may reduce the performance of the adaptive security
appliance and the CSC SSM, you may want to revise this security policy later. For
example, it is not usually necessary to scan all traffic coming from your inside
network because it is coming from a trusted source. By refining the service
policies so that the CSC SSM scans only traffic from untrusted sources, you can
achieve your security goals and maximize performance of the adaptive security
appliance and the CSC SSM.
To create a global service policy that identifies traffic to be scanned, perform the
following steps:
Step 1 In the main ASDM window, click the Configuration tab.
Step 2 Click Security Policies, and then click the Service Policy Rules radio button.
Step 3 Click Add.
The Add Service Policy Rule appears.
Step 4 In the Service Policy page, click the Global - applies to all interfaces radio
button.