Dear All, Question asked to reset and log the connection from asa inside to outside domain such as youtube.com. all other website access should not be affected. DO not use ACL to achieve this task
My sol: regex block-web \.youtube\.com class-map WEB match port tcp eq www class-map type inspect http match-all HTTP match request uri regex block-web policy-map type inspect http inspect-http parameters class HTTP reset log But in WB they have confgured l7-class-map as: class-map type insptect http match-all HTTP-BLOCK match request header regex block-web reset of the configurations are same. l4 policy-map created and applied in inside interface is the both solution are correct? can we match domain in uri and header host? please explain.. Regards, Yusef
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
