I would like to block all URLs on the Outside Network for a specific inside host. Furthermore I would like to exclude a few outside URLs from the general " all URLs blocked" which shall be accessible by the specific host.
Is it possible with an ASA Box. To make it clear again: a specific inside Host should only be allowed to access external URLs which are explicitly allowed in the FW. All other traffic to the outside world should be disallowed. All other inside hosts on the Network should not be affected by this policy.
Is this possible with an ASA 5505? How to accomplish that?
It would help if you really read and tried to understand the link I sent you. You would be able to do it no problem.
In any case, here it is
regex allowex1 "www\.allowed1\.com"
regex allowex2 "www\.allowed2\.net"
access-list user-acl extended permit tcp host 192.168.1.2 any eq www
class-map type inspect http match-all allow-url-class
match not request header host regex allowex1
match not request header host regex allowex2
match access-list user-acl
policy-map type inspect http allow-url-policy
inspect http allow-url-policy
service-policy allow-user-url-policy interface inside
Rank useful posts.