DNS in firewall rule

Unanswered Question
Jun 8th, 2009
User Badges:


What if we need to get in rule to permit certain site on ASA with the sites domain name & not based on IP. Can this be done by just putting in the site name"www.abc.com" or is there any other way.Please help.


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 3 (1 ratings)
sachinraja Wed, 06/10/2009 - 08:45
User Badges:
  • Red, 2250 points or more

Hello Thomas

If you want to restrict access through URL's, you need to have a URL filtering software seperately , or have a CSC module with the ASA.. CSC can do content filtering.. With a plain ASA, you can just restrict traffic with IP addresses..

Hope this helps.. all the best..


suthomas1 Fri, 06/12/2009 - 19:16
User Badges:

How can i determine if my firewall has a CSC module.Any commands to check this out?


abinjola Mon, 06/15/2009 - 04:36
User Badges:
  • Cisco Employee,

"How can i determine if my firewall has a CSC module"

You may use command show module 1 detail to verify this


This Discussion