Cisco Cisco FirePOWER Appliance 7010
12-11
FireSIGHT System User Guide
Chapter 12 Using NAT Policies
Managing NAT Policies
To view a NAT policy report:
Access:
Admin/Network Admin
Step 1
Select
Devices > NAT.
The NAT page appears.
Step 2
Click the report icon (
) next to the policy for which you want to generate a report. Remember to save
any changes before you generate a NAT policy report; only saved changes appear in the report.
The system generates the report. Depending on your browser settings, the report may appear in a pop-up
window, or you may be prompted to save the report to your computer.
window, or you may be prompted to save the report to your computer.
Comparing Two NAT Policies
License:
Control
Supported Devices:
Series 3
To review policy changes, you can examine the differences between two NAT policies. You can compare
any two policies or the currently applied policy with another policy. Optionally, after you compare, you
can then generate a PDF report to record the differences between the two policies.
any two policies or the currently applied policy with another policy. Optionally, after you compare, you
can then generate a PDF report to record the differences between the two policies.
There are two tools you can use to compare policies:
•
The comparison view displays only the differences between two policies in a side-by-side format.
The name of each policy appears in the title bar on the left and right sides of the comparison view
except when you select
The name of each policy appears in the title bar on the left and right sides of the comparison view
except when you select
Running Configuration
, in which case a blank bar represents the currently active
policy.
You can use this to view and navigate both policies on the web interface, with their differences
highlighted.
highlighted.
•
The comparison report creates a record of only the differences between two policies in a format
similar to the policy report, but in PDF format.
similar to the policy report, but in PDF format.
You can use this to save, copy, print, and share your policy comparisons for further examination.
For more information on understanding and using policy comparison tools, see the following sections:
Policy Information
Provides the name and description of the policy, the name of the user who last
modified the policy, and the date and time the policy was last modified. See
modified the policy, and the date and time the policy was last modified. See
Device Targets
Lists the managed devices targeted by the policy. See
Rules
Provides the rule type and conditions for each rule in the policy. See
.
Referenced Objects
Provides the name and configuration of all individual objects and group objects
used in the policy, by type of condition (Zones, Networks, and Ports) where the
object is configured.
used in the policy, by type of condition (Zones, Networks, and Ports) where the
object is configured.
Table 12-6
NAT Policy Report Sections (continued)
Section
Description