Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
776
Views
0
Helpful
2
Replies

URL Filtering - Allowing one site, blocking all others

Go to solution
jcarvalh
Level 1
Level 1

‎05-05-2014 08:05 AM - edited ‎03-11-2019 09:09 PM

Hello.

I want to use ASA to allow one computer to access only to one website (www.tsf.pt).

I used the following configuration but I am not being able to put it it to work, since all web traffic is denied.

access-list Inside_mpc line 1 extended permit object-group Web_Access object TI-Virtual any4 (group Web_Access allows http and https)

regex TSF "tsf\.pt"
     
policy-map type inspect http TSF
   parameters
     protocol-violation action drop-connection
   match not request uri regex TSF
     reset log

class-map TSF-Filter-class
   match access-list Inside_mpc

policy-map TSF-Filter
   class TSF-Filter-class
     inspect http TSF

service-policy TSF-Filter interface Inside

My ideia was that anything that did not match www.tsf.pt would be denied. After I failed to do it I configured the policy-map with a match request uri regex TSF (with reset and log) and when I opened the website I could see hit count increasing on the policy-map (this was just to check that ASA was processing regex).

 

After I tried the following policy that also did not work (did this because I didn't knew if there was an implicit deny at the end of the policy map)

policy-map type inspect http TSF
   parameters
     protocol-violation action drop-connection
   match request uri regex TSF
      log

  match not request uri regex TSF
     reset log

 

 

Is there something wrong with my config? Am I missing anything?

Thanks in advance,

Joao.

 

 

 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Poonam Garg
Level 3
Level 3

‎05-07-2014 04:18 AM

Hello Joao,

Make correction your regular expression:

regex TSF "\.tsf\.pt"

You can test whether your regex is correct by testing using cmd:

ciscoasa(config)# test regex www.tsf.pt "\.tsf\.pt"
INFO: Regular expression match succeeded.

 

HTH

"Please rate helpul posts"

 

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Poonam Garg
Level 3
Level 3

‎05-07-2014 04:18 AM

Hello Joao,

Make correction your regular expression:

regex TSF "\.tsf\.pt"

You can test whether your regex is correct by testing using cmd:

ciscoasa(config)# test regex www.tsf.pt "\.tsf\.pt"
INFO: Regular expression match succeeded.

 

HTH

"Please rate helpul posts"

 

0 Helpful

Go to solution
jcarvalh
Level 1
Level 1
In response to Poonam Garg

‎05-12-2014 08:52 AM

Hello Poonam.

I changed the regex and I also remove and re-apply the policy and now is working just fine.

Thanks for your reply.

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card