Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

URI Filtering regex

I am having some issues with using regex and uri filtering. I have a client that has public web cams for the zoo so people can view them. They had an issue with an outsider going to the configuration section of the camera and changing the IP scheme. So I want to allow the camera but block the configuration part. Thanks in advance for you help.

This is what I want blocked:

http://1.1.1.1/cgi-bin/videoconfiguration.cgi

This is what I want to allow:

http://1.1.1.1/cgi-bin/cmd/encoder?get_stream

Here are the configs:

regex block1-http-BGFalcon-Cam "/videoconfiguration.cgi/"

regex block2-http-BGFalcon-Cam "1.1.1.1"

class-map type inspect http match-any block-url-class

match request uri regex block1-http-BGFalcon-Cam

match request header host regex block2-http-BGFalcon-Cam

policy-map type inspect http block-url-policy

parameters

class block-url-class

  drop-connection log

policy-map global_policy

class inspection_default

  inspect http block-url-policy

1 REPLY
Community Member

URI Filtering regex

Thanks for all the help... I figured it out!!

286
Views
0
Helpful
1
Replies
CreatePlease to create content