While studying CBAC and ZFW at Cisco, I learned that sites using the http protocol can filter the url through ip urlfilter commands and CBAC configuration. But it doesn't seem to be able to filter https, why is that? Are there other solutions for filtering https url?