what additional configuration is required for the Cisco IOS Firewall to reset the TCP connection…?

You are the Cisco Configuration Assistant in your company, what additional configuration is
required for the Cisco IOS Firewall to reset the TCP connection if any peer-to-peer, tunneling, or
instant messaging traffic is detected over HTTP based on the following configuration?
appfw policy-name my policy application http
strict-http action reset alarm

content-length maximum 1 action reset alarm
content-type-verification match-req-rsp action reset alarm
max-header-length request 1 response 1 action reset alarm
max-url-length 1 laction reset alarm
request-method rfc put action reset alarm
transfer-encoding type default reset alarm
!
ip inspect name firewall appfw mypolicy ip inspect name firewall http
!
Interface FastEthernetO/0 ip inspect firewall in

You are the Cisco Configuration Assistant in your company, what additional configuration is
required for the Cisco IOS Firewall to reset the TCP connection if any peer-to-peer, tunneling, or
instant messaging traffic is detected over HTTP based on the following configuration?
appfw policy-name my policy application http
strict-http action reset alarm

content-length maximum 1 action reset alarm
content-type-verification match-req-rsp action reset alarm
max-header-length request 1 response 1 action reset alarm
max-url-length 1 laction reset alarm
request-method rfc put action reset alarm
transfer-encoding type default reset alarm
!
ip inspect name firewall appfw mypolicy ip inspect name firewall http
!
Interface FastEthernetO/0 ip inspect firewall in

A.
class-map configuration

B.
the PAM configuration

C.
the ip inspect name firewall im, ip inspect name firewall p2p, and ip inspect name firewall tunnel
commands

D.
the port-misuse default action reset alarm command in the HTTP application firewall policy
configuration



Leave a Reply 0

Your email address will not be published. Required fields are marked *