Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
867
Views
0
Helpful
2
Replies

HTTPS url blocking using class map

Seth Beauchamp
Level 1
Level 1

‎08-04-2011 08:12 AM - edited ‎03-11-2019 02:07 PM

I have a request for blocking urls using a class map. I have made this work with HTTP, however it does not work for https. This is a 2851 router with IOS Version 12.4(15)T7. I see i could use the command "match protocol secure-https" however this does not let me specify any specific urls.

Does anyone know if a new IOS version will support what I'm trying to do? Or if there is another way? I wasn't sure if this was the correct forum to use, sorry if its not.

Labels:
0 Helpful
2 Replies 2

STUART RUSSELL
Level 1
Level 1

‎08-04-2011 02:05 PM

Hi Seth, I think you will find that because https traffic is really http encapsulated in ssl/tls the URL is not visible. My understanding is unless you use a technology to decrypt and then inspect the http you won't see the URL.

Sent from Cisco Technical Support iPad App

0 Helpful

Seth Beauchamp
Level 1
Level 1
In response to STUART RUSSELL

‎08-04-2011 04:34 PM

thats what I suspected. Thank you for your reply.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card