ASA 5510 http filtering with regex

Unanswered Question
May 22nd, 2010


I have problem to filter http traffic with regex . URL filtering works fine, but domain name filtering doesn't work correctly. Hire is configuration:

regex MP3Files ".+\.[Mm][Pp][3]"
regex AVIFiles ".+\.[Aa][Vv][Ii]"

regex Domain1 "myspace\.com"
regex Domain2 "facebook\.com"

access-list Inside_Subnet extended permit tcp any eq 80
access-list Inside_Subnet extended permit tcp any eq 8080

class-map type regex match-any File_Exstension_Class
match regex AVIFiles
match regex MP3Files

class-map type regex match-any Domain_List_Class
match regex Domain1
match regex Domain2

class-map Inside_Subnet
match access-list Inside_Subnet

class-map type inspect http match-any File_Exstensions
match request uri regex class File_Exstension_Class

class-map type inspect http match-any Domain_Class
match request header host regex class Domain_List_Class

policy-map type inspect http Inside_Policy
class File_Exstensions
class Domain_Class


policy-map inside-policy
class Inside_Subnet
  inspect http Inside_Policy

service-policy inside-policy interface inside

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Dwi Haryanto Thu, 10/21/2010 - 02:39


i have test u'r configuration, n i want to block mp3 file, but u'r configuration was fail.

can u tell what that i miss?

Dwi Haryanto Thu, 10/21/2010 - 18:38

Hi Giorgi,

thx i think i miss to write letter 's' on class-map type inspect http match-any File_Exstensions, that way i get any thing not work.

once more thx u so much Giorgi


This Discussion