I would like to write a policy on the ASA to block any URL with the word "facebook" in it, except for www.facebook.com so www.wwfacebook.com and www.wwwfacebook.com would be blocked but www.facebook.com would not.
I believe the blocking policy should look like below, but I am unsure how I should create an exception to allow www.facebook.com
regex blockex1 "/facebook/"
class-map type inspect http match-any block-url-class
match request uri regex blockex1
policy-map type inspect http block-url-policy
inspect http block-url-policy
service-policy global_policy global