https://community.cisco.com/t5/network-security/limit-http-https-user-s-downloads/m-p/3086708#M133525 <P>Dear all, I've an ASA 5516 and I'm trying to limit the http based traffic download from users.</P> <P>192.168.99.0/24 is my local network and I'm using these rules:</P> <P></P> <P>access-list global_mpc extended permit tcp any 192.168.99.0 255.255.255.0 eq www</P> <P></P> <P>class-map global-class1<BR />&nbsp;match access-list global_mpc<BR />!</P> <P>class global-class1<BR />&nbsp; inspect http <BR />&nbsp; police input 100000 1500<BR />&nbsp; police output 100000 1500</P> <P></P> <P>But it doesn't work, it works only if I remove "eq www" so limit for the download on every port.</P> <P></P> <P>Anyone have suggestions?</P> Tue, 12 Mar 2019 09:46:37 GMT epasqualotto 2019-03-12T09:46:37Z https://community.cisco.com/t5/network-security/limit-http-https-user-s-downloads/m-p/3086708#M133525 <P>Dear all, I've an ASA 5516 and I'm trying to limit the http based traffic download from users.</P> <P>192.168.99.0/24 is my local network and I'm using these rules:</P> <P></P> <P>access-list global_mpc extended permit tcp any 192.168.99.0 255.255.255.0 eq www</P> <P></P> <P>class-map global-class1<BR />&nbsp;match access-list global_mpc<BR />!</P> <P>class global-class1<BR />&nbsp; inspect http <BR />&nbsp; police input 100000 1500<BR />&nbsp; police output 100000 1500</P> <P></P> <P>But it doesn't work, it works only if I remove "eq www" so limit for the download on every port.</P> <P></P> <P>Anyone have suggestions?</P> Tue, 12 Mar 2019 09:46:37 GMT https://community.cisco.com/t5/network-security/limit-http-https-user-s-downloads/m-p/3086708#M133525 epasqualotto 2019-03-12T09:46:37Z https://community.cisco.com/t5/network-security/limit-http-https-user-s-downloads/m-p/3086709#M133526 <P>Hi,</P> <P></P> <P>Can you try by changing ACL to...</P> <P></P> <P><SPAN>access-list global_mpc extended permit tcp any eq www 192.168.99.0 255.255.255.0&nbsp;</SPAN></P> <P><SPAN>Thx</SPAN></P> <P><SPAN>MS</SPAN></P> Mon, 07 Aug 2017 23:07:55 GMT https://community.cisco.com/t5/network-security/limit-http-https-user-s-downloads/m-p/3086709#M133526 mvsheik123 2017-08-07T23:07:55Z https://community.cisco.com/t5/network-security/limit-http-https-user-s-downloads/m-p/3086710#M133528 <P>I'll make a test on next days by using cli. With ASDM there's no option to set the source port (only destination) when configuring ACL for QoS.</P> <P></P> <P>Thanks</P> Tue, 08 Aug 2017 06:51:08 GMT https://community.cisco.com/t5/network-security/limit-http-https-user-s-downloads/m-p/3086710#M133528 epasqualotto 2017-08-08T06:51:08Z