Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
669
Views
0
Helpful
5
Replies

Configuring Layer 7 Inspection

Go to solution
mahesh18
Level 6
Level 6

‎07-10-2013 09:43 AM - edited ‎03-11-2019 07:10 PM

Hi Everyone,

I was reading this from cisco live--

Configuring layer 7 inspection

1.Create a Layer 7 class map to identify traffic by matching criteria specific to applications: 

2.Create a Layer 7 policy map to defend against Application Layer attacks by referencing a Layer 7 class-map and applying an action

3.Create a Layer 3/4 policy map to associate traffic defined in a Layer 3/4 class map and reference the Layer 7 policy map:???

I understand lines 1 and 2  but need to know what does  line 3 mean?Need explanation on that?

Regards

Mahesh

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
lcambron
Level 3
Level 3

‎07-10-2013 10:14 AM

Hello,

Example:

class-map L3_Class

match access-list L3_ACL

class-map type inspect http match-all BlockDomainsClass

match request header host regex class DomainBlockList

policy-map type inspect http http_inspection_policy

class BlockDomainsClass

  reset log

policy-map inside-policy ---------------------{ L3 Policy-map }

class L3_Class ---------------------------------{ L3 Classs-map }

  inspect http http_inspection_policy-----{ L7 policy-map }

I hope this helps.

Regards,

Felipe.

View solution in original post

0 Helpful

Go to solution
lcambron
Level 3
Level 3
In response to mahesh18

‎07-10-2013 12:23 PM

Mahesh,

After the L7 policy-map has been created, this is how you can apply it.

Regards,

Felipe.

View solution in original post

0 Helpful
5 Replies 5

Go to solution
lcambron
Level 3
Level 3

‎07-10-2013 10:14 AM

Hello,

Example:

class-map L3_Class

match access-list L3_ACL

class-map type inspect http match-all BlockDomainsClass

match request header host regex class DomainBlockList

policy-map type inspect http http_inspection_policy

class BlockDomainsClass

  reset log

policy-map inside-policy ---------------------{ L3 Policy-map }

class L3_Class ---------------------------------{ L3 Classs-map }

  inspect http http_inspection_policy-----{ L7 policy-map }

I hope this helps.

Regards,

Felipe.

0 Helpful

Go to solution
mahesh18
Level 6
Level 6
In response to lcambron

‎07-10-2013 10:41 AM

Hi Felipe,

Ya that helped a lot.Can you please tell the reason why we need to do step 3?

Regards

Mahesh

0 Helpful

Go to solution
lcambron
Level 3
Level 3
In response to mahesh18

‎07-10-2013 12:23 PM

Mahesh,

After the L7 policy-map has been created, this is how you can apply it.

Regards,

Felipe.

0 Helpful

Go to solution
mahesh18
Level 6
Level 6
In response to lcambron

‎07-10-2013 01:21 PM

Hi Felipe,

Thanks for answering.

Regards

Mahesh

0 Helpful

Go to solution
lcambron
Level 3
Level 3
In response to mahesh18

‎07-10-2013 01:31 PM

Mahesh,

You're welcome, I'm glad to be of help.

Regards,

Felipe.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card