03-01-2018 06:40 AM - edited 02-21-2020 07:27 AM
I want to check specific ports & protocol messages for their data and only allow that data between two interfaces when it matches any of the conditions.
I built a regular expression class and have it OR match between the different regular expression's (name - value).
I think this is done correctly. But I'm not sure how to apply it to the interface(s).
03-03-2018 06:12 AM
Hi
You need to add your class inside a policy and apply like this:
service-policy inside-policy interface inside
Refers to this doc:
-If I helped you somehow, please, rate it as useful.-
03-29-2018 01:51 PM
I've tried to do that via that guide, but it specifies HTTP traffic, what I want to do is only allow certain data through the FW regardless of the port or protocol used. I want to scan the packet data itself for corruption.
04-03-2018 07:44 AM
I think I understand now that I need the submodule's help in doing what I want. I'm exploring firepower now to do just that.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide