This is where I always get confused. Can you please let me know the CCIE security features in which we will use ".*" and "*" as wild card mask.
As far I know, features like IOS FW L7, ASA L7 inspection, ".*" will be used a wild card mask with regex. With regards Kings On Mon, Apr 5, 2010 at 10:55 PM, Brandon Carroll <[email protected]>wrote: > Its a wildcard to match any other string characters in a URL. > > http://192.168.1.1/mydirectory/default.ida > > > /mydirectory/ would be matched by the *. > > > Regards, > > Brandon Carroll - CCIE #23837 > Senior Technical Instructor - IPexpert > Mailto: [email protected] > Telephone: +1.810.326.1444 > Live Assistance, Please visit: www.ipexpert.com/chat > eFax: +1.810.454.0130 > > IPexpert is a premier provider of Self-Study Workbooks, Video on Demand, > Audio Tools, Online Hardware Rental and Classroom Training for the Cisco > CCIE (R&S, Voice, Security & Service Provider) certification(s) with > training locations throughout the United States, Europe, South Asia and > Australia. Be sure to visit our online communities at > www.ipexpert.com/communities and our public website at www.ipexpert.com > > > > On Apr 5, 2010, at 10:23 AM, Kingsley Charles wrote: > > I get your point Brandon. But I am not understanding the purpose of "*" > in this configuration. > > > With regards > Kings > > On Mon, Apr 5, 2010 at 10:49 PM, Brandon Carroll <[email protected]>wrote: > >> I don't think this is a string that matches the same as standard regular >> expressions that you would see in IPS or L7 class-maps on an ASA. Notice >> the phrasing: >> >> R6(config-cmap)#match protocol http url ? >> WORD *Enter a string as the sub-protocol parameter* >> >> R6(config-cmap)#match protocol http url >> >> Of course I've never actually used a full-on regular expression here but >> my understanding is that you are only matching a string in a url which is >> why you do three lines like this: >> >> Router(config-cmap)#*match protocol http url "*default.ida*"* >> Router(config-cmap)#*match protocol http url "*cmd.exe*"* >> Router(config-cmap)#*match protocol http url "*root.exe*"* >> >> >> rather than one like this: >> >> Router(config-cmap)#*match protocol http url >> "*default.ida*|*cmd.exe*|*root.exe*"* >> >> >> >> Regards, >> >> Brandon Carroll - CCIE #23837 >> Senior Technical Instructor - IPexpert >> Mailto: [email protected] >> Telephone: +1.810.326.1444 >> Live Assistance, Please visit: www.ipexpert.com/chat >> eFax: +1.810.454.0130 >> >> IPexpert is a premier provider of Self-Study Workbooks, Video on Demand, >> Audio Tools, Online Hardware Rental and Classroom Training for the Cisco >> CCIE (R&S, Voice, Security & Service Provider) certification(s) with >> training locations throughout the United States, Europe, South Asia and >> Australia. Be sure to visit our online communities at >> www.ipexpert.com/communities and our public website at www.ipexpert.com >> >> >> >> On Apr 5, 2010, at 10:11 AM, Kingsley Charles wrote: >> >> Hi Brandon >> >> a*b will match aaaab, b, aab, ab. >> >> *b is invalid as there is no character before "*" to repeat >> >> >> Can you please explain what will [match protocol http url "*cmd.exe*] >> match? >> >> With regards >> Kings >> >> On Mon, Apr 5, 2010 at 10:34 PM, Brandon Carroll >> <[email protected]>wrote: >> >>> Kings, >>> >>> I dont think you need the "." before or after. The "*" should account >>> for that. >>> >>> Regards, >>> >>> Brandon Carroll - CCIE #23837 >>> Senior Technical Instructor - IPexpert >>> Mailto: [email protected] >>> Telephone: +1.810.326.1444 >>> Live Assistance, Please visit: www.ipexpert.com/chat >>> eFax: +1.810.454.0130 >>> >>> IPexpert is a premier provider of Self-Study Workbooks, Video on Demand, >>> Audio Tools, Online Hardware Rental and Classroom Training for the Cisco >>> CCIE (R&S, Voice, Security & Service Provider) certification(s) with >>> training locations throughout the United States, Europe, South Asia and >>> Australia. Be sure to visit our online communities at >>> www.ipexpert.com/communities and our public website at www.ipexpert.com >>> >>> >>> >>> On Apr 5, 2010, at 9:43 AM, Kingsley Charles wrote: >>> >>> * >>> >>> >>> >> >> > >
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
