Guidelines and limitations, Default settings – Cisco ASA 5505 User Manual
Page 1274
60-6
Cisco ASA 5500 Series Configuration Guide using the CLI
Chapter 60 Configuring the ASA CSC Module
Guidelines and Limitations
–
Domain name and hostname for the CSC SSM.
–
An e-mail address and an SMTP server IP address and port number for e-mail notifications.
–
E-mail address(es) for product license renewal notifications.
–
IP addresses of hosts or networks that are allowed to manage the CSC SSM. The IP addresses
for the CSC SSM management port and the ASA management interface can be in different
subnets.
–
Password for the CSC SSM.
Guidelines and Limitations
This section includes the guidelines and limitations for this feature.
Context Mode Guidelines
Supported in single and multiple context modes.
Firewall Mode Guidelines
Supported in routed and transparent firewall modes.
Failover Guidelines
Does not support sessions in Stateful Failover. The CSC SSM does not maintain connection information,
and therefore cannot provide the failover unit with the required information. The connections that a CSC
SSM is scanning are dropped when the ASA in which the CSC SSM is installed fails. When the standby
ASA becomes active, it forwards the scanned traffic to the CSC SSM and the connections are reset.
IPv6 Guidelines
Does not support IPv6.
Model Guidelines
Supported on the ASA 5510, ASA 5520, and ASA 5540 only.
Additional Guidelines
You cannot change the software type installed on the module; if you purchase a CSC module, you cannot
later install IPS software on it.
Default Settings
lists the default settings for the CSC SSM.
Table 60-1
Default CSC SSM Parameters
Parameter
Default
FTP inspection on the ASA
Enabled
All features included in the license(s) that you
have purchased
Enabled