Port-to-Application Mapping (PAM)

This section describes the Cisco IOS Firewall Port-to-Application Mapping (PAM) feature. By using PAM, you allow CBAC-supported applications to be run on nonstandard ports. Then you can customize access control for specific applications and services to meet the distinct needs of your networks.

By using the port information, PAM creates a table of default port-to-application mapping information at your firewall. This information allows CBAC-supported services to run on nonstandard ports, bypassing CBAC's limitations of inspecting traffic using only the well-known or registered ports associated with an application.

With PAM, you can also support host- or subnet-specific port mapping, which allows you to apply PAM ...

Get CCIE Practical Studies: Security (CCIE Self-Study) now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.