Cisco Cisco FirePOWER Appliance 7010
13-4
FireSIGHT System User Guide
Chapter 13 Using Access Control Policies
Configuring Policies
Setting the Default Action
License:
Any
The default action for an access control policy determines how the system handles traffic that:
Table 13-2
Access Control Policy Configuration Actions
To...
You can...
modify the policy name or
description
description
click the name or description field, delete any characters as needed, then type the new
name or description.
name or description.
set the default action
find more information at
log connections for the default action find more information at
.
assign different rights to different
users
users
find more information at
.
manage policy targets
find more information at
.
save your policy changes
click
Save
.
save and apply your policy
click
Save and Apply
. See
information.
Tip
You can also click the edit icon (
) next to your policy on the Access Control
page.
cancel your policy changes
click
Cancel
, then, if you have made changes, click
OK
.
add a rule to a policy
click
Add Rule
. See
for
more information.
Tip
You can also right-click a blank area in the row for a rule and select
Insert new
rule
.
edit an existing rule
click the edit icon (
) next to the rule. See
for more information.
Tip
You can also right-click the rule and select
Edit
.
delete a rule
click the delete icon (
) next to the rule, then click
OK
.
Tip
You can also right-click a blank area in the row for a selected rule, select
Delete
, then click
OK
to delete one or more selected rules.
enable or disable an existing rule
right-click a selected rule, select
State
, then select
Disable
or
Enable
. Disabled rules are
grayed and marked
(disabled)
beneath the rule name.
display the configuration page for a
specific rule attribute
specific rule attribute
click the name, value, or icon in the column for the condition on the row for the rule.
For example, click the name or value in the
For example, click the name or value in the
Source Networks
column to display the
Networks page for the selected rule. See
for more information.
configure a response page to blocked
HTTP requests
HTTP requests
find more information at
.
filter traffic based on Security
Intelligence data
Intelligence data
find more information in
configure advanced settings
find more information in