Chapter 22
Applying Application Layer Protocol Inspection
For information about NetBIOS inspection, see the inspect netbios command page in the Catalyst 6500
Series Switch and Cisco 7600 Series Router Firewall Services Module Command Reference.
PPTP Inspection
PPTP inspection is disabled by default.
For information about PPTP inspection, see the inspect pptp command page in the Catalyst 6500 Series
Switch and Cisco 7600 Series Router Firewall Services Module Command Reference.
RSH Inspection
RSH inspection is enabled by default.
For information about RSH inspection, see the inspect rsh command page in the Catalyst 6500 Series
Switch and Cisco 7600 Series Router Firewall Services Module Command Reference.
RTSP Inspection
This section describes how to enable RTSP application inspection and change the default port
configuration. This section includes the following topics:
•
•
•
•
RTSP Inspection Overview
You control RTSP application inspection with the inspect rtsp command, available in policy map class
configuration mode. This command is disabled by default. The inspect rtsp command lets the FWSM
pass RTSP packets. RTSP is used by RealAudio, RealNetworks, Apple QuickTime 4, RealPlayer, and
Cisco IP/TV connections.
For Cisco IP/TV, use RTSP TCP port 554 and TCP 8554.
Note
RTSP applications use the well-known port 554 with TCP (rarely UDP) as a control channel. The FWSM
supports TCP only, in conformity with RFC 2326. This TCP control channel is used to negotiate the data
channels that is used to transmit audio/video traffic, depending on the transport mode that is configured
on the client.
The supported RDT transports are: rtp/avp, rtp/avp/udp, x-real-rdt, x-real-rdt/udp, and x-pn-tng/udp.
The FWSM parses SETUP response messages with a status code of 200. If the response message is
travelling inbound, the server is outside relative to the FWSM and dynamic channels need to be opened
for connections coming inbound from the server. If the response message is outbound, then the FWSM
does not need to open dynamic channels.
Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Configuration Guide using ASDM
OL-20748-01
RTSP Inspection Overview, page 22-73
Using RealPlayer, page 22-74
Restrictions and Limitations, page 22-74
Enabling and Configuring RTSP Inspection, page 22-74
PPTP Inspection
22-73