URL filtering in CISCO ASASM2 ver 8.5

khem thapa · ‎11-19-2013

Hello,

can any 1 tell me how to block url like facebook.com or gmail.com through asa

I have cisco ASASM2 which is running on ver 8.5

How can i block those url with ASASM.

Thanks in advance

Khem

jumora · ‎11-19-2013

Looking at the command reference of the ASASM it does not seem as if it supports regex filtering it only does it with Websense and N2H2

Value our effort and rate the assistance!

h.groeger · ‎11-19-2013

Hello

under

under

just above of "ICMP Inspection" you will find the following example

hostname(config)# regex url1 "www\.xyz.com/.*\.asp"

hostname(config)# regex url2 "www\.xyz[0-9][0-9]\.com"

hostname(config)# regex get "GET"

hostname(config)# regex put "PUT"

hostname(config)# class-map type regex match-any url_to_log

hostname(config-cmap)# match regex url1

hostname(config-cmap)# match regex url2

hostname(config-cmap)# exit

hostname(config)# class-map type regex match-any methods_to_log

hostname(config-cmap)# match regex get

hostname(config-cmap)# match regex put

hostname(config-cmap)# exit

hostname(config)# class-map type inspect http http_url_policy

hostname(config-cmap)# match request uri regex class url_to_log

hostname(config-cmap)# match request method regex class methods_to_log

hostname(config-cmap)# exit

hostname(config)# policy-map type inspect http http_policy

hostname(config-pmap)# class http_url_policy

hostname(config-pmap-c)# log

Perhaps, it can provide you an idea, in order to modify in a suitable way for you.