Use the Application Control Settings page to enable the Application Control feature, apply the application control policies to different zones, and update the application signature database.
• Be aware that the Cisco ISA500 can control access only for the traffic that it handles. For example, if a PC and a server are directly connected to the LAN ports of the Cisco ISA500, Application Control policies apply to the traffic between these devices. However, if a switch is uplinked to the Cisco ISA500, the security appliance does not handle the traffic through the ports of that switch and therefore the Application Control policies do not apply.
• You must update the application signatures frequently so that Application Control can identify the latest applications.
Refer to the following topics:
• Enabling Application Control Service
• Mapping Application Control Policies to Zones