Initially I tried it with certmap association to trustpoint but it didn't work for me...
RJ On Fri, Oct 12, 2012 at 6:59 AM, Kingsley Charles < [email protected]> wrote: > What was your config? > > > > With regards > Kings > CCNA,CCSP,CCNP,CCIP,CCIE 35914 (Security) > > On Fri, Oct 12, 2012 at 1:25 AM, Adil Pasha <[email protected]> wrote: > >> Hi guys, >> Does anyone know how to block https://www.facebook.com/login.php page >> using MPF? >> >> http://www.handbook.dk/block-domains-on-a-cisco-asa-152.htm >> https://supportforums.cisco.com/docs/DOC-1268 >> And new 8.4 version has a very basic solution: >> https://supportforums.cisco.com/docs/DOC-1268 >> >> >> The normal configuration on the following links cannot block the above >> link. >> Also, if the above link can be launched using Google.com search and then >> click on Login. >> >> I am not finding any solution. >> >> This better not be the exam question till Cisco completely provides the >> solution. I have tested it using ver 8.2, 8.3 and 8.4. >> >> Thanks for any help in advance. >> >> >> Best Regards. >> ______________________ >> Adil >> >> >> On Oct 11, 2012, at 3:06 PM, Radim Jurica <[email protected]> wrote: >> >> Hi guys, >> if I would like to check the field in peer's certificate, is it enough to >> have this "isakmp-profile > match certificate" map construct? >> >> ! >> crypto pki certificate map CERTMAP2 10 >> subject-name co ou = juniper >> ! >> crypto isakmp identity dn >> crypto isakmp profile ISAKMP >> ca trust-point R6 >> match certificate CERTMAP2 >> ! >> crypto ipsec profile CRYPTO >> set transform-set TS >> set isakmp-profile ISAKMP >> ! >> >> It's sVTI VPN PKI solution which without this (and even with this false >> checking) works good. >> >> I cant see nothing relevant in crypto isakmp | pki debugs about checking >> this subject field. >> >> Thank you >> >> Radim >> _______________________________________________ >> For more information regarding industry leading CCIE Lab training, please >> visit www.ipexpert.com >> >> Are you a CCNP or CCIE and looking for a job? Check out >> www.PlatinumPlacement.com >> >> >> >> _______________________________________________ >> For more information regarding industry leading CCIE Lab training, please >> visit www.ipexpert.com >> >> Are you a CCNP or CCIE and looking for a job? Check out >> www.PlatinumPlacement.com >> > > > _______________________________________________ > For more information regarding industry leading CCIE Lab training, please > visit www.ipexpert.com > > Are you a CCNP or CCIE and looking for a job? Check out > www.PlatinumPlacement.com >
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com
