A P P E N D I X
B
Map View User Interface Reference
These topics describe the pages, dialog boxes, and menus you can use when in Map view:
•
Map View Main Page, page B-1
•
Map Elements, page B-2
•
Map Toolbar, page B-4
•
Navigation Window, page B-5
•
Maps Menus, page B-5
•
Dialog Boxes, page B-9
Map View Main Page
Figure B-1 identifies the functional areas of the Map view main page. For more information about these
functional areas, see the Related Topics section.
Navigation Path
To open the Map view main page, click the Map View button in the toolbar. Undocking the Map view
also activates it (select Map > Undock Map View).
Related Topics
•
Map Menu, page 2-9
•
Menu Bar Reference, page 2-5
•
Toolbar Reference, page 2-12
•
Map Toolbar, page B-4
•
Map Elements, page B-2
•
Navigation Window, page B-5
•
Using Selectors, page 2-13
User Guide for Cisco Security Manager 3.3
OL-19983-01
B-1
Appendix B
Map View User Interface Reference
Map Elements
Map View Main Page
Figure B-1
Map View Main Page
1
menu bar
2
navigation window
3
map toolbar
4
map
Map Elements
A map is a visual representation of your network, or a portion of it. For more information about maps,
see Working With Maps, page 3-1. To open a map, see Opening Maps, page 3-3.
These tables describe the elements that can appear on a map:
•
Table B-1 on page B-3 describes the device nodes that can appear on a map. These elements are
managed by Security Manager.
•
Table B-2 on page B-3 describes the map objects that can appear on a map. These elements are not
managed by Security Manager.
•
Table B-3 on page B-4 describes the map element indicators that can appear with a device node.
User Guide for Cisco Security Manager 3.3
B-2
OL-19983-01
Appendix B
Map View User Interface Reference
Map Elements
Table B-1
Device Node Types
Node Type
Icon
Description
Firewall
When you select a device, its security contexts are
highlighted.
Firewall security context
When you select a security context, the parent
device is highlighted. The dotted outline
distinguishes the icon as a security context.
Adaptive Security Appliance
When you select a device, its security contexts are
highlighted.
Adaptive Security Appliance
security context
When you select a security context, the parent
device is highlighted. The dotted outline
distinguishes the icon as a security context.
Router
Router or VPN concentrator.
Catalyst 6500/7600 or Catalyst
switch
When you select a Catalyst device node, any
Firewall Service Modules contained in it are
highlighted.
Firewall Services Module
(FWSM)
When you select a Firewall Services Module, the
security contexts it contains are highlighted on the
map.
FWSM security context
When you select a security context, the parent
device is highlighted. The dotted outline
distinguishes the icon as a security context.
IPS Sensor or Security Service
Module
An IPS sensor.
VPN connection
Any type of VPN connection.
For GET VPNs, a dashed line indicates the
connection between group members and key
servers.
Table B-2
Map Object Types
Node Type
Unmanaged firewall
Icon
Description
Unmanaged firewall device.
User Guide for Cisco Security Manager 3.3
OL-19983-01
B-3
Appendix B
Map View User Interface Reference
Map Toolbar
Table B-2
Map Object Types (Continued)
Unmanaged router
Unmanaged router.
Network
Network with a specified address space.
Host
Network host.
Examples: CSA, Syslog Server, CA Server, AAA
Host
Cloud
An unspecified group of map objects that provides
connectivity between specified nodes.
Layer 3 link
Table B-3
—
Layer 3 network connection
Map Element Indicators
Indicator
Icon
Linked map
Description
Node is linked to another map.
Map Toolbar
Table B-4 on page B-4 describes the buttons on the map toolbar.
Table B-4
Toolbar Button
Map Toolbar
Description
Selects objects on the map. Click the button, then click items on the map.
Pans the map. Click the button, click and hold on the map, then drag the cursor.
Zooms in on the map.
Zooms out from the map.
Zooms the map to fill a rectangle that you draw.
User Guide for Cisco Security Manager 3.3
B-4
OL-19983-01
Appendix B
Map View User Interface Reference
Navigation Window
Table B-4
Map Toolbar (Continued)
Toolbar Button
Description
Zooms the map to include the entire open map.
Zooms the map to actual size.
Creates a new Security Manager-managed node. After you create the new device
in the inventory, it is added to the active map as a device node.
Adds a new map object to the open map.
Adds a new link to the open map.
Creates a new VPN connection between nodes on the open map.
Select devices to show on the map as device nodes.
Select VPNs to show on the map.
Navigation Window
The navigation window displays a smaller version of the entire active map. The shaded rectangle defines
the area of the map that is currently displayed.
Use the navigation window to select the portion of the map to view, and to change the map zoom level.
•
To toggle the display of the navigation control, select Map > Hide/Show Navigation Window.
•
To pan the navigation control to select which portion of the map to display, click the shaded
rectangle and drag it to a new location.
•
To change the zoom level, click one of the resizing handles in the corners of the shaded rectangle,
then drag it to increase or decrease the area of the map to display. The map zooms to display the area
covered by the map indicator.
The title bar in the navigation window displays the name of the map. If the map has unsaved changes,
an asterisk (*) appears next to the map name.
Maps Menus
The following topics describe the menus that contain maps commands. To open the context menus,
right-click map elements.
•
Maps Menus, page B-5
•
Managed Device Node Context Menu, page B-6
User Guide for Cisco Security Manager 3.3
OL-19983-01
B-5
Appendix B
Map View User Interface Reference
Maps Menus
•
Multiple Selected Nodes Context Menu, page B-7
•
VPN Connection Context Menu, page B-7
•
Layer 3 Link Context Menu, page B-7
•
Map Object Context Menu, page B-8
•
Map Background Context Menu, page B-8
Managed Device Node Context Menu
The Managed Device Node context menu opens when you right-click a map node that represents a
managed device. The commands that you see depend on the type of device you select. The following
table lists all commands that you might see.
Table B-5
Managed Device Node Context Menu
Menu Command
Description
Edit Firewall Policies
Edits firewall policies on the device.
Select a firewall policy type from the submenu to edit it.
Edit Firewall Settings
Edits firewall settings on the device.
Select a setting from the submenu to edit it.
Edit VPN Peers
Edits peers in VPNs in which the device participates.
Edit VPN Policies
Edits VPN policies on the device.
Device Properties
Displays device properties.
Clone Device
Creates a copy of the device. See Cloning a Device, page 5-24 for more
information.
Copy Policies Between
Devices
Copies policies between the device and other devices. See Copying
Policies Between Devices, page 6-22.
Share Device Policies
Shares device local policies.
Catalyst Summary Info
Allows you to view high-level system information, including any
service modules, ports, and VLANs that Security Manager has
discovered. See Catalyst Summary Info Page, page L-1.
Show in Device View
Opens the Device View for the selected device.
Device Manager
Launches the Device Manager. See Device Managers, page 20-1.
Inventory Status
Displays the Inventory Status window for the device. See Inventory
Status Window, page C-39.
Show VPN Peers
Shows peers in VPNs in which the device participates.
Preview Configuration
Previews the device configuration with all committed changes
included.
Show Containment
Shows the security contexts and service modules in devices that have
them.
Node Properties
Displays node properties.
Set Linked Map
Creates a link from this node to another map.
Open Linked Map
Opens the map that is linked to the node.
User Guide for Cisco Security Manager 3.3
B-6
OL-19983-01
Appendix B
Map View User Interface Reference
Maps Menus
Table B-5
Managed Device Node Context Menu (Continued)
Menu Command
Description
Discover Policies on Device
Discovers policies on the device.
Move To Center
Pans the map to display the node in the center.
Delete Device
Deletes the device from the device inventory.
Remove from Map
Removes the node from the map.
Multiple Selected Nodes Context Menu
The Multiple Selected Device Node context menu opens when you select more than one map node, then
right-click on a selected node.
If all of the selected nodes are not VPN-capable, the commands to configure VPNs do not appear.
Table B-6
Multiple Selected Nodes Context Menu
Menu Command
Description
Create Point to Point VPN
Creates a point to point VPN between two selected devices.
All selected nodes must be managed and VPN-capable.
Create Hub and Spoke VPN
Creates a hub and spoke VPN that includes the selected nodes.
The node that you right-click becomes the VPN hub. All selected nodes
must be managed and VPN-capable.
Create Meshed VPN
Creates a full mesh VPN that includes the selected nodes.
All selected nodes must be managed and VPN-capable.
Remove Selected Nodes
Removes all selected device nodes. Appears only if you right-click on
a selected device node.
Delete Map Objects
Deletes all selected map objects. Appears only if you right-click on a
selected map object.
VPN Connection Context Menu
The VPN Connection context menu opens when you right-click on a VPN connection on the map. For
more information, see Editing VPN Policies or Peers From the Map, page 3-15.
Table B-7
VPN Connection Context Menu
Menu Command
Description
Edit VPN Peers
Edits the peers in the VPN.
Edit VPN Policies
Edits the VPN policies.
Layer 3 Link Context Menu
The Layer 3 Link context menu opens when you right-click on a layer 3 link on the map.
User Guide for Cisco Security Manager 3.3
OL-19983-01
B-7
Appendix B
Map View User Interface Reference
Maps Menus
Table B-8
Layer 3 Link Context Menu
Menu Command
Description
Link Properties
Displays the link properties.
Delete Link
Deletes the link from the map.
Map Object Context Menu
The Map Object context menu opens when you right-click a map object that does not represent a
managed device.
Table B-9
Map Object Context Menu
Menu Command
Description
Node Properties
Displays the node properties.
Move To Center
Pans the map to display the node in the center.
Set Linked Map
Links the node to a map.
Open Linked Map
Opens the map to which the node is linked.
Delete Map Object
Deletes the map object.
Map Background Context Menu
The Map Background context menu opens when you right-click in the background area of a map, that
is, not on any object or link.
Table B-10
Map Background Context Menu
Menu Command
Description
Show Devices on Map
Selects the managed devices to show on the map.
Show VPNs on Map
Selects the VPNs to display on the map.
Add Map Object
Adds a map object to the map.
Add Link
Adds a Layer 3 link to the map.
New Device
Creates a new managed device and adds it to the map as a device node.
New VPN
Creates a new VPN and adds it to the map.
Find Map Node
Finds nodes on the map.
Open Map
Opens a saved map.
Save Map
Saves the open map.
Show/Hide Navigation
Window
Toggles the display of the navigation window on the map.
Map Properties
Displays the properties of the map.
Hierarchical layout
Arranges the network nodes in a hierarchical layout.
Radial layout
Arranges the network nodes in a radial layout.
User Guide for Cisco Security Manager 3.3
B-8
OL-19983-01
Appendix B
Map View User Interface Reference
Dialog Boxes
Table B-10
Map Background Context Menu (Continued)
Menu Command
Description
Circular layout
Arranges the network nodes in a circular layout.
Dock/Undock Map
Undocks the Map view.
Dialog Boxes
The following topics describe the Map view dialog boxes:
•
Open Map Dialog Box, page B-9
•
Save Map As Dialog Box, page B-10
•
Delete Map Dialog Box, page B-10
•
Find Node Dialog Box, page B-10
•
Map Settings Dialog Box, page B-11
•
Import Background Image Dialog Box, page B-11
•
Set Linked Map Dialog Box, page B-12
•
Link Properties Dialog Box, page B-12
•
Select Interfaces Dialog Box, page B-12
•
Add Link Dialog Box, page B-13
•
Node Properties Dialog Box, page B-14
•
Add Map Object and Node Properties Dialog Boxes, page B-14
•
Interface Properties Dialog Box, page B-15
•
Select Policy Object Dialog Box, page B-15
•
Show Devices on Map Dialog Box, page B-15
•
Show VPNs on Map Dialog Box, page B-16
•
VPN Peers Dialog Box, page B-16
•
Select VPN to Configure Dialog Box, page B-16
Open Map Dialog Box
Use the Open Map dialog box to open a saved map or the default map. Select a map from the Available
Maps list or type in the name of an existing map in the Selected Map field. For more information, see
Opening Maps, page 3-3.
Navigation Path
To open this dialog box, select Map > Open Map.
User Guide for Cisco Security Manager 3.3
OL-19983-01
B-9
Appendix B
Map View User Interface Reference
Dialog Boxes
Save Map As Dialog Box
Use the Save Map As dialog box to save a new map or to save a copy of the current map with a new name.
The map name can be as long as 256 characters, but cannot be the reserved names “Default Map” or
“New Map.” For more information, see Saving Maps, page 3-3.
Navigation Path
To open this dialog box, do one of the following:
•
Open a new map and select Map > Save Map.
•
Select Map > Save Map As.
Delete Map Dialog Box
Use the Delete Map dialog box to delete a map. Deleting a map does not delete any devices from the
inventory. Select a map from the Available Maps list or type in the name of an existing map in the
Selected Map field. For more information, see Deleting Maps, page 3-3.
Navigation Path
To open this dialog box, select Map > Delete Map.
Find Node Dialog Box
Use the Find Node dialog box to find a node on the open map.
Navigation Path
To open this dialog box, select Map > Find Map Node.
Related Topics
•
Searching for Map Elements, page 3-7
Field Reference
Table B-11
Find Node Dialog Box
Element
Description
Name
Enter the name, or a portion of the name, of the node to find.
The node list is filtered to display only the nodes whose names begin
with the entered text.
Interface IP Address
Enter the IP address, or a portion of the IP address, of the node to find.
The node list is filtered to display only the nodes whose IP addresses
match the entered address.
Type
Lists node types. Select a node type from the list.
The node list is filtered to display only the nodes of the selected node
type.
User Guide for Cisco Security Manager 3.3
B-10
OL-19983-01
Appendix B
Map View User Interface Reference
Dialog Boxes
Table B-11
Find Node Dialog Box (Continued)
Element
Description
Node list
Displays the list of nodes on the map that match the criteria entered in
the Name, IP address, and Type fields.
Select a node and click OK to find it on the map.
Map Settings Dialog Box
Use the Map Settings dialog box to set the background for the active map. For more information, see
Setting the Map Background, page 3-8.
Navigation Path
(Map view) Select Map > Map Properties.
Field Reference
Table B-12
Map Settings Dialog Box
Element
Description
Available Background
Images
Lists the images that are available for use as background images for the
map.
Select an image to set it as the map background. Select none to remove
the map’s background image.
Add button
Click this button to imports a new image file, making it available as a
background image. Before you can import an image file, you must copy
it to the Security Manager server.
Delete button
Click this button to remove the selected background image file from the
list of available images.
Selected Background Image
The name of the selected image.
Change Background Color
Displays the background color of the map. Click Select to select a new
color.
Select button
Map X
Sets the X-axis coordinate of the background image’s top left corner.
Map Y
Sets the Y-axis coordinate of the background image’s top left corner.
Scale
Sets the scale of the background image.
Import Background Image Dialog Box
Use the Import Background Image dialog box to import an image into the library of map background
images.
You can import background images of the following file formats: JPEG, GIF, PNG, IVL, and SVG.
Before importing a background image, you must transfer the image to the Security Manager server file
system by accessing the server directly. For security reasons, Security Manager does not provide a way
to transfer files to the server.
Click Browse to select the file or enter the filename including the full path.
User Guide for Cisco Security Manager 3.3
OL-19983-01
B-11
Appendix B
Map View User Interface Reference
Dialog Boxes
Navigation Path
To open this dialog box, click the Add button in the Map Settings Dialog Box, page B-11.
Set Linked Map Dialog Box
Use the Set Linked Map dialog box to link a map element to an existing map. You must create the map
before you can link to it.
Navigation Path
To open this dialog box, select Set Linked Map from a map node context menu.
Related Topics
•
Using Linked Maps, page 3-7
Field Reference
Table B-13
Set Linked Map Dialog Box
Element
Description
Available Topology Maps
Displays the maps that are available for selection. Select the map to link
to this node.
Selected Linked Map
The map you selected.
Link Properties Dialog Box
Use the Link Properties dialog box to view a Layer 3 link’s properties.
Navigation Path
To open this dialog box, right-click a Layer 3 link and select Link Properties.
Related Topics
•
Displaying Layer 3 Links on the Map, page 3-13
Field Reference
Table B-14
Link Properties Dialog Box
Element
Description
Source Node
Displays the name and type of the link source node.
Source Interface
Lists the interfaces configured on the source node.
Destination Node
Displays the name and type of the link destination node.
Destination Interface
Lists the interfaces configured on the destination node.
Select Interfaces Dialog Box
Use the Select Interfaces dialog box to create a new Layer 3 link on the map.
User Guide for Cisco Security Manager 3.3
B-12
OL-19983-01
Appendix B
Map View User Interface Reference
Dialog Boxes
Navigation Path
To open this dialog box, select Map > Add link (the cursor changes to a crosshair icon), click one of the
link endpoint nodes on the map, then click the other link endpoint node.
Related Topics
•
Displaying Layer 3 Links on the Map, page 3-13
Field Reference
Table B-15
Select Interfaces Dialog Box
Element
Description
Source Device
Displays the name and type of the link source device.
Source Interface
Lists the interfaces configured on the source node.
Select a source interface from the list to change the source interface.
Destination Node
Displays the name and type of the link destination node.
Destination Device
Displays the name and type of the link source device.
Destination Interface
Lists the interfaces configured on the destination node.
Select a destination interface from the list to change the destination
interface.
Add Link Dialog Box
Use the Add Link dialog box to select how to represent the Layer 3 link that you are adding to the map.
The contents of the Add Link dialog box vary according to which nodes and interfaces you are
connecting. Select the check boxes for each intermediary map object (network or cloud) that you want
to insert between the connected nodes.
Navigation Path
This dialog box might open when you add a link between nodes, depending on which interfaces you
select to connect.
Field Reference
Table B-16
Add Link Dialog Box
Element
Description
Network check boxes
Represent the intermediary networks that you can include in the link.
Select the networks to include.
Cloud check boxes
Represent the intermediary network clouds that you can include in the
link.
Select the clouds to include.
User Guide for Cisco Security Manager 3.3
OL-19983-01
B-13
Appendix B
Map View User Interface Reference
Dialog Boxes
Node Properties Dialog Box
Use the Node Properties dialog box to view the properties of a managed node.
Navigation Path
To open this dialog box, select Node Properties from a map node context menu.
Field Reference
Table B-17
Node Properties Dialog Box
Element
Description
Name
Displays the node name.
Type
Displays the node type.
Interface IP Address
Lists the node interfaces and their IP addresses.
Add Map Object and Node Properties Dialog Boxes
Use the Add Map Object dialog box to add an object to the map. Use the Node Properties dialog box to
edit map object properties. These dialog boxes are identical except for their titles.
Navigation Path
•
To open the Add Map Object dialog box, select Map > Add Map Object.
•
To open the Node Properties dialog box, select Node Properties from a map object context menu.
Field Reference
Table B-18
Add Map Object and Node Properties Dialog Boxes
Element
Description
Name
Displays the name of the map object.
Enter a name for a new map object.
Copy Policy Object button
Click to browse for a policy object to use as the basis for the map object.
The Select Policy Object dialog box opens.
Type list
Lists the available object types. Select an object type.
Interfaces table
Lists the interfaces on the node. Select an interface to edit it.
Add button
Adds an interface to the node.
The Interface Properties dialog box opens.
Edit button
Edits the selected interface.
The Interface Properties dialog box opens.
Remove button
Removes the selected interface.
User Guide for Cisco Security Manager 3.3
B-14
OL-19983-01
Appendix B
Map View User Interface Reference
Dialog Boxes
Interface Properties Dialog Box
Use the Interface Properties dialog box to add and edit interfaces on map objects.
Navigation Path
To open this dialog box, click the Add or Edit button in the Add Map Object or Node Properties dialog
boxes.
Field Reference
Table B-19
Interface Properties Dialog Box
Element
Description
Interface Name
Displays and edits the interface name.
Interface IP Addr/Mask
Displays and edits the interface IP address and network mask.
Select Policy Object Dialog Box
Use the Select Policy Object dialog box to add an object to the map that is based on a building block.
Navigation Path
To open this dialog box, click Copy Policy Object in the Add Map Object dialog box.
Field Reference
Table B-20
Select Policy Object Dialog Box
Element
Description
Select a Policy Object
Displays the building block types that you can use for a map object.
Select the building block type to use.
Policy object text box (field
name depends on the object
you selected)
The name of the policy object to use. Click Select to select a policy
object from a list of existing objects.
Select button
Show Devices on Map Dialog Box
Use the Show Devices on Map dialog box to select which devices to display on the active map. For
information on filtering the device list, see Filtering Items in Selectors, page 2-14.
Navigation Path
To open this dialog box, select Map > Show Devices on Map, then click on the map.
User Guide for Cisco Security Manager 3.3
OL-19983-01
B-15
Appendix B
Map View User Interface Reference
Dialog Boxes
Field Reference
Table B-21
Show Devices on Map Dialog Box
Element
Description
Available Devices list
Lists devices that are available to add to the map.
Select devices to display in the map. Select a device group to select all
of its member devices.
>> button
Adds devices that you selected in the Available Devices list to the
Selected Devices list.
<< button
Removes devices that you selected in the Selected Devices list.
Selected Devices list
Lists devices that are selected to appear on the map.
Select devices to remove from the map. Select a device group to select
all of its member devices.
Show VPNs on Map Dialog Box
Use the Show VPNs on Map dialog box to select VPNs to display on the active map.
•
To add a VPN, select it in the Available VPNs list and click >>. Select a VPN group to select all of
its member VPN subgroups and VPNs. Click the arrow icon next to a VPN name to see the devices
that participate in the VPN.
•
To remove a VPN from the map, select it in the Selected VPNs list and click <<. Removing a VPN
does not remove the devices that participate in the VPN, and it does not delete the VPN.
Navigation Path
(Map view) Select Map > Show VPNs on Map.
VPN Peers Dialog Box
Use the VPN Peers dialog box to view a list of the devices, or peers, that participate in the selected VPN.
If the selected device participates in more than one VPN, you are first prompted to select the VPN.
Navigation Path
(Map view) Right-click a device that participates in a VPN and select Show VPN Peers.
Select VPN to Configure Dialog Box
Use the Select VPN to Configure dialog box to select the VPN when the device you selected participates
in more than one VPN. After you select the VPN and click OK, the appropriate dialogs from the VPN
configuration wizard or the Site-to-Site VPN manager open. Click the Help button for guidance.
Navigation Path
(Map View) Right-click a managed device that participates in more than one VPN and select either Edit
VPN Policies or Edit VPN Peers. These commands directly open the appropriate dialog boxes if the
device does not participate in more than one VPN.
User Guide for Cisco Security Manager 3.3
B-16
OL-19983-01
Download PDF