I don't think this is a string that matches the same as standard regular expressions that you would see in IPS or L7 class-maps on an ASA. Notice the phrasing:
R6(config-cmap)#match protocol http url ? WORD Enter a string as the sub-protocol parameter R6(config-cmap)#match protocol http url Of course I've never actually used a full-on regular expression here but my understanding is that you are only matching a string in a url which is why you do three lines like this: Router(config-cmap)#match protocol http url "*default.ida*" Router(config-cmap)#match protocol http url "*cmd.exe*" Router(config-cmap)#match protocol http url "*root.exe*" rather than one like this: Router(config-cmap)#match protocol http url "*default.ida*|*cmd.exe*|*root.exe*" Regards, Brandon Carroll - CCIE #23837 Senior Technical Instructor - IPexpert Mailto: [email protected] Telephone: +1.810.326.1444 Live Assistance, Please visit: www.ipexpert.com/chat eFax: +1.810.454.0130 IPexpert is a premier provider of Self-Study Workbooks, Video on Demand, Audio Tools, Online Hardware Rental and Classroom Training for the Cisco CCIE (R&S, Voice, Security & Service Provider) certification(s) with training locations throughout the United States, Europe, South Asia and Australia. Be sure to visit our online communities at www.ipexpert.com/communities and our public website at www.ipexpert.com On Apr 5, 2010, at 10:11 AM, Kingsley Charles wrote: > Hi Brandon > > a*b will match aaaab, b, aab, ab. > > *b is invalid as there is no character before "*" to repeat > > > Can you please explain what will [match protocol http url "*cmd.exe*] match? > > With regards > Kings > > On Mon, Apr 5, 2010 at 10:34 PM, Brandon Carroll <[email protected]> > wrote: > Kings, > > I dont think you need the "." before or after. The "*" should account for > that. > > Regards, > > Brandon Carroll - CCIE #23837 > Senior Technical Instructor - IPexpert > Mailto: [email protected] > Telephone: +1.810.326.1444 > Live Assistance, Please visit: www.ipexpert.com/chat > eFax: +1.810.454.0130 > > IPexpert is a premier provider of Self-Study Workbooks, Video on Demand, > Audio Tools, Online Hardware Rental and Classroom Training for the Cisco CCIE > (R&S, Voice, Security & Service Provider) certification(s) with training > locations throughout the United States, Europe, South Asia and Australia. Be > sure to visit our online communities at www.ipexpert.com/communities and our > public website at www.ipexpert.com > > > > On Apr 5, 2010, at 9:43 AM, Kingsley Charles wrote: > >> * > >
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
