7-19
User
Guide

for

the

Cisco

Application

Networking

Manager

5.2
OL-26572-01
Chapter
7






Configuring

Virtual

Servers
Configuring
Virtual

Servers
Step
2
In
the

Virtual

Servers

table,

choose

the

virtual
server
that
you

want

to
configure
for

protocol
inspection,
and
cl

ick

Edit.
The
Virtual

Server

configuration

window

appears.
Step
3
Click
Protocol
Inspection.
The
En

able

Inspect

check

box

ap

pears.
Step
4
Check
the
Enable
Inspect

check

box

to

enable

inspection

on

the

specified

traffic

or

uncheck

it

to

disable
inspection
on

this

traffic.
By
default,

the

ACE

allows

all

request

methods.
Step
5
(Optional)
If


you

checked

t

he
Enable
Inspect

check

box,

configure

additional

i

nspection

options

usi

ng
the
information

in

Ta

b

l

e


7-6 .
Ta
b

l

e


7-6
Protocol
Inspection

Configuration

Options
Protocol
Action
DNS
In
the

length

field,

enter

the

maximum

length

of

the

DNS

packet

in

bytes

as

defined

in

the

Length
field.
If

you

do

not

enter

a

value

in

this

field,

the

DNS

packet

size

is

not

checked.
FTP
a.
Check
the
Use
Strict

ch

eck

box


to

specify

th

at

th

e

vi

rtual

server

is

to


perform

en

hanced
inspection
of

FTP

traffic

and

enforce

compliance

with

RFC

standards.

Uncheck

the

check

box
to
specify

that

the

virtual

server

is

not

to

perform

enhanced

FTP

inspection.
b.
(Optional)
If

yo

u

checked

the

Use

St

rict

check

box,

i

n
the

Bl

ocked

FTP

Commands

field,
identify
the

commands

that

are

to

be

denied

by

the

virtual

server.

See

Ta

b

l

e


14-8

for

more
information
about

the

FTP

commands.


Choose
the

commands

that

are

to

be

blocked

by
the
virtual

server

in
the
Available

Items
list,
and

click

Add.

The

commands

appear

in

the

Selected

Items

list.


To
remove
commands
that

you

do

not

want

to

be

blocked,

choose

them

in

the

Selected
Items
list,

and

click

Remove.

The

commands

appear

in

the

Available

Items

list.