Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
829
Views
5
Helpful
1
Replies

Block user agents on firewall

Jon Marshall
Hall of Fame
Hall of Fame

‎11-21-2017 02:33 AM - edited ‎02-21-2020 06:48 AM

So this is a totally new thing for me but we have a client who has given us a list of about 1000 HTTP user agents they want blocked and they do not want to do this on the actual web server. 

 

I found an old example of how to block an agent on an ASA using 8.2 code and HTTP inspection but not sure how practical it would be to try and use the same technique for over 1000 agents. 

 

So assuming 9.2 code my questions are how realistic would it be to use HTTP inspection and if it isn't what would be the Cisco security solution for this. 

 

Jon

Labels:
0 Helpful
1 Reply 1

mikael.lahtela
Level 4
Level 4

‎11-21-2017 11:30 AM

Hi,

Does not sound like the best solution to do this in the ASA inspect, i think it's still doable.
I would try and look at using some kind of proxy to filter that out.

br, Micke
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card