Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

DNS in firewall rule

Hi,

What if we need to get in rule to permit certain site on ASA with the sites domain name & not based on IP. Can this be done by just putting in the site name"www.abc.com" or is there any other way.Please help.

Thanks.

4 REPLIES

Re: DNS in firewall rule

Hello Thomas

If you want to restrict access through URL's, you need to have a URL filtering software seperately , or have a CSC module with the ASA.. CSC can do content filtering.. With a plain ASA, you can just restrict traffic with IP addresses..

Hope this helps.. all the best..

Raj

New Member

Re: DNS in firewall rule

How can i determine if my firewall has a CSC module.Any commands to check this out?

Thanks.

Cisco Employee

Re: DNS in firewall rule

"How can i determine if my firewall has a CSC module"

You may use command show module 1 detail to verify this

New Member

Re: DNS in firewall rule

Hi Thomas,

it can be done through regex (if u dont have a third party server like websense or n2h2)

http://supportwiki.cisco.com/ViewWiki/index.php/ASA_URL_filtering

or

http://www.cisco.com/application/pdf/paws/100535/asa-8x-regex-config.pdf

685
Views
3
Helpful
4
Replies