Port-to-Application Mapping (PAM)

This section describes the Cisco IOS Firewall Port-to-Application Mapping (PAM) feature. By using PAM, you allow CBAC-supported applications to be run on nonstandard ports. Then you can customize access control for specific applications and services to meet the distinct needs of your networks.

By using the port information, PAM creates a table of default port-to-application mapping information at your firewall. This information allows CBAC-supported services to run on nonstandard ports, bypassing CBAC's limitations of inspecting traffic using only the well-known or registered ports associated with an application.

With PAM, you can also support host- or subnet-specific port mapping, which allows you to apply PAM ...

Get CCIE Practical Studies: Security (CCIE Self-Study) now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.