08-04-2011 08:12 AM - edited 03-11-2019 02:07 PM
I have a request for blocking urls using a class map. I have made this work with HTTP, however it does not work for https. This is a 2851 router with IOS Version 12.4(15)T7. I see i could use the command "match protocol secure-https" however this does not let me specify any specific urls.
Does anyone know if a new IOS version will support what I'm trying to do? Or if there is another way? I wasn't sure if this was the correct forum to use, sorry if its not.
08-04-2011 02:05 PM
Hi Seth, I think you will find that because https traffic is really http encapsulated in ssl/tls the URL is not visible. My understanding is unless you use a technology to decrypt and then inspect the http you won't see the URL.
Sent from Cisco Technical Support iPad App
08-04-2011 04:34 PM
thats what I suspected. Thank you for your reply.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide