Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello Team,I am trying to block the URL like facebook.com on the ASA, i used the mentioned of object ACL by using FQDN name as object. It is resolving the DNS name perfectly so i can have all the IPs of facebook.co,. i configure the following ACL whi...
Dear All,I have one R1<-->connected to <-->R2 and R2 is connected to R3. i have enable the Netflow on R2 that is when R1 ping R3 IP it shoudl generate the netflow as follow.Define an ip flow-top-talkers policy to be applied to R2 as follows: Display ...
Hi,I need to configure the ASA HTTP inspection against the http get method with one regex (for level 15). once the policy hit it should make a log. i did foolowing config.inspection for GET /level/15/exec/-/access-enable HTTP/1.1\r\n.!regex LVL15.l...
Dear All,I have one firewall need to be configured in transparent mode. I have inside and outside router. Can anyone just give me the configuration of transparent firewall ASA8.2 pelase. I didnt find the configuration on Cisco site.Regards,Ali.....
Hi, i am facing one problem can any one address the below issue and let me know the solution. I have two routers and try to build "Site-to-Site VPN for IPv6 IPsec". I follow the commands from Cisco document and community but when i apply my ipsec...
Hi, Unfortunately we dont have CX, but i dont want to inspect the payload. just trying to get L4 blocked. Only the difference between the traditional ACL and the ACL i am using it with FQDN.
Dear Nikko, Thank you very much for your valuable input, i was skipping this point while testing it. It worked but instagram.com still its not blocked even after clear the cache. For the rest of the URls i can see the ACL hitcount is increasing and a...
Dear All, Just an update, i can successfully blocked the Https sites like yahoo, twitter, youtube with the following access list. access-list INSIDE_IN line 3 extended deny tcp host 10.x.x.x object-group Blocked-URL eq httpsbut facebook and instagram...
