Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ASA 5550 for block p2p

hi,

i have applied the following line of code for blocking p2p in ASA but it blocked all of my traffic. please help me.

http-map inbound_http

content-length min 100 max 2000 action reset log

content-type-verification match-req-rsp action reset log

max-header-length request 100 action reset log

max-uri-length 100 action reset log

port-misuse p2p action drop

port-misuse default action allow

class-map http-port

match port tcp eq www

policy-map inbound_policy

class http-port

inspect http inbound_http

service-policy inbound_policy interface outside

1 REPLY
Bronze

Re: ASA 5550 for block p2p

We can do that using the port misuse command or you would try installing IPS module before blocking the peer-to-peer on all ports.

264
Views
0
Helpful
1
Replies
CreatePlease login to create content