Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 
cancel
Start a conversation
5764
Views
0
Helpful
1
Replies

Using wildcard on FQDN or URL Filtering at ASA 5506-X

SunhoJang4198
Level 1
Level 1

ā€Ž12-30-2020 07:26 AM

Hello, 

 

I am a beginner for ASA Firewall.

 

I have the same problem like below link.

 - https://community.cisco.com/t5/network-security/asa-wildcard-fqdn-object-acl/td-p/3062312

 

So I have read some articles for this subject. 

Then the conclusion is that 

 - cannot use wildcard at FQDN

 - cannot use wildcard at URL Filter 

 

https://www.cisco.com/c/en/us/support/docs/security/firesight-management-center/118852-technote-firesight-00.html#anc14

 

In the end of the article  I can read this

################################

When you enter a URL, enter the domain name and omit subdomain information. For example, type cisco.com rather than www.cisco.com. When you use cisco.com in an Allow rule, users could browse to any of these URLs:

ā€Øhttp://cisco.com
http://cisco.com/newcisco
http://www.cisco.com
###############################

 

When I use that cisco.com(for example),I can browse cisco.com, cisco.com/newcisco, www.cisco.com,

Is this URL(for example) ftp.cisco.com, ntp.cisco.com, ios.update.cisco.com  also could browse to all of these URLs?

 

Thanks in advance. 

0 Helpful
1 Reply 1

balaji.bandi
Hall of Fame
Hall of Fame

ā€Ž12-30-2020 07:34 AM

In general when you use cisco.com  means anything wild card allowed. (this read as *.cisco.com)

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card