Cisco Cisco Security Manager 3.3 Guia De Especificaciones
Cisco Security Manager 4.4 API Specification (Version 1.1)
OL- 29074-01
Page 93
3.1.5.16
InterfaceNATManualFirewallPolicy
This policy is only applicable for device ASA version 8.3 or later. Starting ASA 8.3, the complete NAT
representation is a combination of two key policy types. This consists of Manual NAT pre and post rules (section 1
and 3) and object NAT rules (section 2) as shown below.
representation is a combination of two key policy types. This consists of Manual NAT pre and post rules (section 1
and 3) and object NAT rules (section 2) as shown below.
This section covers the Manual NAT (InterfaceNATManualFirewallPolicy) and the following section covers the
Object NAT (InterfaceNATObjectFirewallPolicy).
Object NAT (InterfaceNATObjectFirewallPolicy).
An InterfaceNATManualFirewallPolicy extends from the base BasePolicy class and inherits all its attributes. An
instance of a InterfaceNATManualFirewallPolicy specifies the “manually” defined NAT rules on the device. The
base orderId attribute that is inherited from the base policy specifies the ordering of these rules in the policy. The
section element in the Policy data specifies whether this is a pre or post NAT rule.
instance of a InterfaceNATManualFirewallPolicy specifies the “manually” defined NAT rules on the device. The
base orderId attribute that is inherited from the base policy specifies the ordering of these rules in the policy. The
section element in the Policy data specifies whether this is a pre or post NAT rule.
The following table defines the contents of an InterfaceNATManualFirewallPolicy:
Element. Sub Element
Type
Comment
isRuleEnabled
boolean
If true, the rule is enabled and false indicates that the rule is