Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
5797
Views
0
Helpful
17
Replies

ALLOW ONLY SPECIFIC HTTPS AND HTTP URL TO THE ASA.

ericohermoso
Level 1
Level 1

‎08-08-2010 01:07 AM - edited ‎03-11-2019 11:22 AM

Hello,

I successfully configured my firewall to allow only specific http site. like www.sample.com only using MPF. Now I also want to allow https://sample.com. Please How can i configure my firewall to satisfy this condition.

thank you

Labels:
0 Helpful
17 Replies 17

ericohermoso
Level 1
Level 1
In response to Kureli Sankar

‎08-23-2010 07:33 AM

Hello,

Here is the sh ver:

BASA(config)# sh ver

Cisco Adaptive Security Appliance Software Version 8.0(4)
Device Manager Version 6.1(3)

Compiled on Thu 07-Aug-08 20:53 by builders
System image file is "disk0:/asa804-k8.bin"
Config file at boot was "startup-config"

BAE-FW-JUB up 4 hours 7 mins

Hardware:   ASA5520, 2048 MB RAM, CPU Pentium 4 Celeron 2000 MHz
Internal ATA Compact Flash, 256MB
BIOS Flash Firmware Hub @ 0xffe00000, 1024KB

Encryption hardware device : Cisco ASA-55x0 on-board accelerator (revision 0x0)
                             Boot microcode   : CN1000-MC-BOOT-2.00
                             SSL/IKE microcode: CNLite-MC-SSLm-PLUS-2.03
                             IPSec microcode  : CNlite-MC-IPSECm-MAIN-2.05
0: Ext: GigabitEthernet0/0  : address is 5475.d0a3.6a66, irq 9
1: Ext: GigabitEthernet0/1  : address is 5475.d0a3.6a67, irq 9
2: Ext: GigabitEthernet0/2  : address is 5475.d0a3.6a68, irq 9
3: Ext: GigabitEthernet0/3  : address is 5475.d0a3.6a69, irq 9
4: Ext: Management0/0       : address is 5475.d0a3.6a6a, irq 11
5: Int: Not used            : irq 11
6: Int: Not used            : irq 5
             
Licensed features for this platform:
Maximum Physical Interfaces  : Unlimited
Maximum VLANs                : 150      
Inside Hosts                 : Unlimited
Failover                     : Active/Active
VPN-DES                      : Enabled  
VPN-3DES-AES                 : Enabled  
Security Contexts            : 2        
GTP/GPRS                     : Disabled 
VPN Peers                    : 750      
WebVPN Peers                 : 2        
AnyConnect for Mobile        : Disabled 
AnyConnect for Linksys phone : Disabled 
Advanced Endpoint Assessment : Disabled 
UC Proxy Sessions            : 2       

This platform has an ASA 5520 VPN Plus license.

Serial Number: JMX1421L3KK
Running Activation Key: 0x9c0fec41 0x50d32465 0x58d06d60 0xb074f4c4 0x0c2728a3
Configuration register is 0x1
Configuration last modified by enable_15 at 06:58:30.739 UTC Mon Aug 23 2010

I just see 8.0(4) I can't see any code you are telling.

0 Helpful

Kureli Sankar
Cisco Employee
Cisco Employee
In response to ericohermoso

‎08-23-2010 08:33 AM

Pls. use this link to download code: 8.0.5 is available.

http://tools.cisco.com/squish/10C815

-KS

0 Helpful

ericohermoso
Level 1
Level 1
In response to Kureli Sankar

‎08-23-2010 08:45 AM

Hello,

After I entered the dns, it seems it works fine. I did not put any deny statement at the of the end of the access list as mentioned. Hope it will work fine now. I will get the code and study the workaround.

thank you so much, really a big help.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card