I would like to find a way to give access to one website ( let say cisco.com ), give access to whatever website that have the word "test" in the URL and block the access to all the other websites for only one server ( let say the_server ).
Here the config I have now :
regex cisco.com "\.cisco\.com"
regex test "test"
regex all ".*"
access-list acl_test extended permit tcp object GLOUBIER any eq www
match access-list acl_test
class-map type inspect http match-all http_url_filtering_test
match request header host regex cisco.com
class-map type inspect http match-all http_url_filtering_test2
match request uri regex test
class-map type inspect http match-all http_url_filtering_test3
match request header host regex all
policy-map type inspect http http_url_inspection_test
inspect http http_url_inspection_test
Those rules aren't working ( everything is blocked ), but if I'm try each class-map individualy, it's working fine.
Is there a way to make the 3 rules ( allow cisco.com, allow word test in URL, block the rest ) work together ?
Community Live Event Video
Are you ready to level up your security? Learn more about how Cisco SecureX can help you simplify your security and maximize operational efficiency.
This event talks about Cisco SecureX, its benefits, features, and usage. Th...
Hi all,I cannot understand why is something working very well they create a way to complicate things in Cisco ASA OS. I have a rule :object network LOCAL_ADRESS1 host 192.168.20.12 nat (VLAN20,outside) source static LOCAL_ADRESS1 interface&...
It is our pleasure to officially announce the finalists in the 2021 IT Blog Awards. We are now looking to our amazing tech community to check out the amazing line up of bloggers, vloggers and podcasters. Make sure to vote for your favorites...
Community Live Event Slides
This event talks about Cisco SecureX, its benefits, features, and usage. The session includes sample use cases and live demonstrations.
Cisco expert Luis Silva talks about how this solution can integrate Cisco technology and ...
Hello All, Recently I got an opportunity to perform POC with Cisco ISE (2.7 Patch 4) and Aruba Wireless AP (IAP) to perform 802.1x EAP-FAST (machine + user) authentication followed by Posture Assessment on Windows 10 Machines (installed with AnyConnect 4....