Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

a question about application inspection configuration?

dear experts, hello

when i configure an application inspection for some protocols or applications i may use its class map  like ( ftp-map MY-FTP-CLASS) then define

some parameters in its prompts...

another way i may say ( policy-map type inspect ftp MY-FTP-CLASS)

so what is the difference between them, thanks alot for your help

labib

1 REPLY
Cisco Employee

Re: a question about application inspection configuration?

If you uses ftp-map, then the inspection is specific to just the ftp protocol. Same goes for http, where it is matching on http application specific, as different application has different application format, ie: ftp and http are 2 different protocols that have specific application feature.

With the normal class-map, it is normally just matching on source/destination ip address and/or protocol and port number.

Hope that helps.

161
Views
0
Helpful
1
Replies
CreatePlease to create content