ciscoasa# configure terminal ciscoasa(config)# policy-map type inspect dns preset_dns_map ciscoasa(config-pmap)# parameters ciscoasa(config-pmap-p)# message-length maximum client auto ciscoasa(config-pmap-p)# write memory
You can now exit your SSH connection.
ciscoasa# show running-config
You should see this somewhere in your configuration now:
policy-map type inspect dns preset_dns_map
parameters message-length maximum client auto message-length maximum 512
inspect dns preset_dns_map
Note: The message-length maximum 512 should already be there from the inspection defaults.
This entry was posted by ktaber on January 20, 2012 at 1:08 pm, and is filed under Networking, Security. Follow any responses to this post through RSS 2.0.You can skip to the end and leave a response. Pinging is currently not allowed.