URI filtering on ACE 4710 (A3(2.0))

Answered Question
Dec 18th, 2008

Hi,

Is it possible to create a class-map/traffic-policy to filter on the URI of a web site? For example let's say I'm hosting both www.ab.com and www.xy.com - both on port 80 of a server. I have to allow port 80, but only want to allow www.ab.com.

Is it as simple as:

(config)# class-map type http inspect HTTP_INSPECT_L7CLASS

host1/Admin(config-cmap-http-insp)# match url www/ab/com/*

Any help would be appreciated!

I have this problem too.
0 votes
Correct Answer by Gilles Dufour about 7 years 11 months ago

Actually www.ab.com is not a url but a hostname.

The url would be the portion after the hostname starting with the first '/'.

So, your class-map need to match on hostname.

switch/Admin(config)# class-map type http loadbalance Host-AB

switch/Admin(config-cmap-http-lb)# match http header Host header-value www.ab.com

Gilles.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
Gilles Dufour Fri, 12/19/2008 - 01:20

Actually www.ab.com is not a url but a hostname.

The url would be the portion after the hostname starting with the first '/'.

So, your class-map need to match on hostname.

switch/Admin(config)# class-map type http loadbalance Host-AB

switch/Admin(config-cmap-http-lb)# match http header Host header-value www.ab.com

Gilles.

Actions

This Discussion