6-89
User
Guide

for

the

Cisco

Application

Networking

Manager

5.2
OL-26572-01
Chapter
6






Configuring

Virtual

Contexts
Configuring
Object

Groups


Click
Cancel
to
exit

without
saving
your

entries

and

to

return

to

the
ACL
Summary
table.
Related
Topics


Configuring
Security
with

ACLs,

page
6-78


Creating
ACLs,

page
6-79


Setting
Extended

ACL

Attributes,

page
6-82


Resequencing
Extended

ACLs,

page
6-87


Editing
or

Deleting

ACLs,

page
6-100


Displaying
ACL

Information

and

Statistics,
page
6-89
Displaying
ACL

Information

and

Statistics
You
can

display

information

and

statistics

for

a

particular

ACL

by

using

the

Details

button.
Procedure
Step
1
Choose
Config
>

Devices

>

context

>

Security

>

ACLs.
The
ACLs

table

appears

listing

the

existing

ACLs.
Step
2
In
the

ACLs

table,

choose

an

ACL,

and
click
Details.
The
show

access-list

access-list

detail

CLI

command

out

put

appears.

For

details

about

the

di

splayed
output
fields,

see

either

the

Cisco

ACE

Module

Security

Configuration

Guide

or

the

Cisco

ACE

4700
Series
Appliance

Security

Configuration

Guide,

Chapter

1,

“Configuring

Security

Access

Control

Lists.”
Step
3
Click
Update
Details

to

refresh

the

output
for
the
show
access-list

access-list

detail

CLI

command.
Step
4
Click
Close
to

return

to

the

ACLs
table.
Related
Topics


Configuring
Security
with

ACLs,

page
6-78


Creating
ACLs,

page
6-79


Setting
Extended

ACL

Attributes,

page
6-82


Resequencing
Extended

ACLs,

page
6-87


Editing
or

Deleting

ACLs,

page
6-100
Configuring
Object

Groups
You
can

configure

object

groups

that

you

can

associate

with

ACLs.

An

object

group

is

a

logical

grouping
of
objects

such

as

hosts

(servers

and

clients),

services,

and

networks.

When

you

create

an

object

group,
you
choose

a

type,

such

as

network

or

service,

and

then

specify

the

objects

that

belong

to

the

groups.

In
all,
there

are

four

types

of

object

groups:

Network,

protocol,

service,

and

ICMP-type.
After
you

configure

an

object

group,

you

can

include

it

in

ACLs,

thereby

including

all

objects

within
that
gr

oup

and

reducing

overall

configuration

size.