Cisco Cisco Firepower Management Center 4000
6-53
FireSIGHT System User Guide
Chapter 6 Managing Devices
Editing Device Configuration
Step 9
, enter initiator and responder ports in the
Initiator Port
and the
Responder Port
fields to designate ports.
Tip
You can enter a comma-separated list of port numbers in each rule. You cannot use port ranges in IPv6
fast-path rules. Note that a blank port value is treated as
fast-path rules. Note that a blank port value is treated as
Any
.
Step 10
Optionally, enter a VLAN ID in the
VLAN
field.
Your rule matches only traffic for that VLAN. Note that a blank VLAN value is treated as
Any
.
Step 11
Optionally, select
Bidirectional
to filter all traffic traveling between the specified initiator and responder
ports. Clear the option to specify that your rule matches only packets from those initiator ports or packets
to those responder ports.
to those responder ports.
Step 12
Click
Save
.
The rule is added under Fast-Path Rules in the Advanced pop-up window.
Step 13
In the
Advanced
pop-up window, click
Save
.
The rule is saved. Note that your changes do not take effect until you apply the device configuration; see
for more information.
Deleting Fast-Path Rules
License:
Any
Supported Devices:
8000 Series, 3D9900
The following procedure explains how to delete any IPv4 or IPv6 fast-path rule.
To delete any fast-path rule:
Access:
Admin/Network Admin
Step 1
Select
Devices > Device Management
.
The Device Management page appears.
Step 2
Next to the device where you want to delete a fast-path rule, click the edit icon (
).
The Interfaces tab for that device appears.
Step 3
Click
Device
.
The Devices tab appears.
Step 4
Next to the
Advanced
section, click the edit icon (
).
The Advanced pop-up window appears.
Step 5
Next to the fast-path rule you want to delete, click the delete icon (
).
Step 6
When prompted, confirm that you want to delete the rule.
The rule is removed from the Advanced pop-up window.
Step 7
Click
Save
.