William,
The examples are good that you have below. And if you look in the book Cisco ASA, PIX, and FWSM handbook at some of the regex examples they have for domain matching you will find sometimes they do the domain.com domain\.com and @domain.com. All acceptable answers. But I would prefer the way you did it over the solution configuration as it would be more precise but I haven't seen a domain that doesn't end in a suffix so I wouldn't worry too much about the fact that . is the "any" character. I may possibly add a note to the solution configuration giving more information for those that don't understand regular expressions. Regards, Tyson Scott - CCIE #13513 R&S and Security Technical Instructor - IPexpert, Inc. Telephone: +1.810.326.1444 Cell: +1.248.504.7309 Fax: +1.810.454.0130 Mailto: [email protected] Join our free online support and peer group communities: <http://www.IPexpert.com/communities> http://www.IPexpert.com/communities IPexpert - The Global Leader in Self-Study, Classroom-Based, Video On Demand and Audio Certification Training Tools for the Cisco CCIE R&S Lab, CCIE Security Lab, CCIE Service Provider Lab , CCIE Voice Lab and CCIE Storage Lab Certifications. From: [email protected] [mailto:[email protected]] On Behalf Of Willians Barboza Sent: Sunday, May 10, 2009 7:02 PM To: OSL Security Subject: [OSL | CCIE_Security] lab1.11 Hi, I think the regex expression you put is not correct... The documentation says that a dot [.] without bracket will match any caracter. Then, just to test, I used the test regex command ciscoasa# test regex badspammermcom "badspammer.com" INFO: Regular expression match succeeded. In my opinion, the expression should be one of those: "badspammer[.]com" "badspammer\.com" So that it would only match the exact domain, but not something similar Check my tests ciscoasa# test regex badspammermcom "badspammer[.]com" INFO: Regular expression match failed. ciscoasa# test regex badspammer.com "badspammer[.]com" INFO: Regular expression match succeeded. ciscoasa# test regex badspammer.com "badspammer\.com" INFO: Regular expression match succeeded. ciscoasa# test regex badspammermcom "badspammer\.com" INFO: Regular expression match failed. Regards
