You can use the application command to create a new application definition.
[no] application <application name> {network-object|port|portrange|protocol-only|signature}
To create an application by network object or to remove the network object from the application definition:
[no] application <application name> network-object <network-object-name>
To create an application by port number and protocol (or to remove the port number and protocol from the application definition):
[no] application <application-name> [network-object <network-object-name>] port <port number> protocol {protocol}
To create an application by port range and protocol (or to remove the port range and protocol from the application definition:
[no] application <application-name> [network-object <network-object-name>] portrange <port_number_low> <port_number_high> protocol {protocol}
To create an application by only specifying a protocol (or to remove the protocol only setting from the application definition):
[no] application <application-name> protocol-only {protocol}
To create an application using an L7 application signature (or to remove the L7 signature from the application definition):
[no] application <application-name> signature <l7_signature> [signature_options]
To remove all configuration for a specified application:
application <application name> clear
To remove an application:
no application <application-name>
Example: Define an application called FTP that uses TCP ports 20 and 21 with the L7 signature, ftp.
application FTP portrange 20 21 protocol tcp
application FTP signature ftp
To view an application's definition:
show application <application-name>
|
|
|