для Cisco Cisco Firepower Management Center 4000
14-13
FireSIGHT System User Guide
Chapter 14 Understanding and Writing Access Control Rules
Understanding Rule Conditions and Condition Mechanics
Conditions you select are grayed out and can no longer be added to the same list of selected conditions.
When you select conditions you have added, the add button is also grayed out. When you select
conditions you have not previously added, the add button activates and can be used. In the following
example, the 100Bao and 2channel applications have been added and are currently selected. Both the
selected applications and the
When you select conditions you have added, the add button is also grayed out. When you select
conditions you have not previously added, the add button activates and can be used. In the following
example, the 100Bao and 2channel applications have been added and are currently selected. Both the
selected applications and the
Add to Rule
button are grayed out.
Similarly, if conditions cannot be used in combination, such as mixed transport protocols for source and
destination ports, conditions that are invalid based on previous selections are grayed out.
destination ports, conditions that are invalid based on previous selections are grayed out.
On the relevant condition page, and also on the policy Edit page, you can hover your pointer over an
individual object to display the contents of the object, and over a group object to display the number of
individual objects in the group.
individual object to display the contents of the object, and over a group object to display the number of
individual objects in the group.
The following basic procedure explains how to add conditions to a new rule. See
for complete instructions on adding and modifying rules.
To add available conditions to a list of selected conditions:
Access:
Admin/Access Admin/Network Admin
Step 1
Select
Policies > Access Control
.
The Access Control page appears.
Step 2
Click the edit icon (
) next to the access control policy you want to modify.
The policy Edit page appears.
Step 3
Click
Add Rule
.
The Add Rule page appears.
Step 4
Click the tab for the type of condition you want to add to the rule.
The conditions page appears for the type of condition you selected.
Step 5
Take any of the available actions in the
table.
Step 6
Click
Add
to save your configuration.
delete a condition from a list of selected
conditions
conditions
right-click to highlight the row for a selected condition, then click
Delete
.
delete multiple conditions from a list of
selected conditions
selected conditions
use the Shift and Ctrl keys to select multiple conditions, or right-click and
Select All
; next, right-click to highlight the row for a selected condition, then
click
Delete Selected
.
Table 14-3
Adding Conditions (continued)
To...
You can...