Buy or Renew
Buy or Renew
Meraki Community is live! Welcome Meraki Members! Learn more here.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
994
Views
0
Helpful
1
Replies

Block some https sites on ASA 5508

Go to solution
Ilya Semenov
Level 4
Level 4

‎04-09-2016 06:46 AM - edited ‎03-12-2019 12:36 AM

Hello, everybody!

Could it possible to filter some https sites on ASA 5508 without IPS subscription? I mean youtube.com, facebook.com, some local social nets...

Please, give a link to a useful manual.

Many thanks in advance,

Ilya

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
nspasov
Cisco Employee
Cisco Employee

‎04-09-2016 08:01 AM

Hello Ilya-

I don't believe this is possible with the ASA by itself. You can use the MPF (Modular Policy Framework) to block HTTP based URLs:

http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/100535-asa-8x-regex-config.html

However, this does not work for HTTPs. For that you will need to utilize the SSL inspection which is a FirePOWER feature. For that you can just get the URL Filtering Subscription (Without IPS, AMP.)

Thank you for rating helpful posts!

Thank you for rating helpful posts!

View solution in original post

0 Helpful
1 Reply 1

Go to solution
nspasov
Cisco Employee
Cisco Employee

‎04-09-2016 08:01 AM

Hello Ilya-

I don't believe this is possible with the ASA by itself. You can use the MPF (Modular Policy Framework) to block HTTP based URLs:

http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/100535-asa-8x-regex-config.html

However, this does not work for HTTPs. For that you will need to utilize the SSL inspection which is a FirePOWER feature. For that you can just get the URL Filtering Subscription (Without IPS, AMP.)

Thank you for rating helpful posts!

Thank you for rating helpful posts!
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card