Re: Security Question

Sameer,

There are several ways to do this...

Here is an example!!!

(filter)
class-map match-any CISCO_URLS
 match protocol http host
"cisco.com"
 match protocol http host www.cisco.com
----------or alternative-----------

class-map match-all CISCO_URLS
 match protocol http host
3*cisco.com"
 
class-map match-all CISCO_DOC
 match class-map CISCO_URLS
 match protocol http url "/univercd/*"
!
policy-map TRAFFICFILTER
 class CISCO_DOC
 class CISCO_URLS
   drop
!
interface FastEthernet0/1
 description Vlan 30
 service-policy output TRAFFICFILTER

Joe Sanchez

On 8/13/12 2:34 AM, "ccie99999" <ccie99999_at_gmail.com> wrote:

>According to hof he is ccie in r&s.. how can he ask this kind of
>questions?
>Il giorno 13/ago/2012 08:18, "Haroon" <itguy.pro_at_gmail.com> ha scritto:
>
>> sameer, you are not doing that # justice.. google it up dood
>>
>>
>>
>>http://www.cisco.com/en/US/docs/ios/sec_data_plane/configuration/guide/se
>>c_url_filtering.html
>>
>>
>>
>>
>> On Mon, Aug 13, 2012 at 1:46 AM, sameer inam <i_sameer_at_hotmail.com>
>>wrote:
>>
>> > Gents,
>> > Can we block https traffic on router level ? if yes could you please
>>send
>> > me
>> > document
>> > Appreciate your kind help as always
>> > Sameer
>> >
>> > CCIE#29978
>> >
>> >
>> > Blogs and organic groups at http://www.ccie.net
>> >
>> >
>>_______________________________________________________________________
>> > Subscription information may be found at:
>> > http://www.groupstudy.com/list/CCIELab.html
>>
>>
>> Blogs and organic groups at http://www.ccie.net
>>
>> _______________________________________________________________________
>> Subscription information may be found at:
>> http://www.groupstudy.com/list/CCIELab.html
>
>
>Blogs and organic groups at http://www.ccie.net
>
>_______________________________________________________________________
>Subscription information may be found at:
>http://www.groupstudy.com/list/CCIELab.html

Blogs and organic groups at http://www.ccie.net
Received on Mon Aug 13 2012 - 03:19:11 ART