Active direcory and firewall
Goto page Previous  1, 2  :||:
Networking/Security Forums -> Firewalls // Intrusion Detection - External Security

Author: krugger PostPosted: Fri Aug 27, 2010 5:49 pm    Post subject:
    ----
Checkout the HTTP Inspection Engine introduced in IOS 12.3, althought you might want 12.4 because it has classes for most common IM programs.

Something like this would be the config:

Code:

! Define the HTTP policy.
appfw policy-name mypolicy
  application http
    strict-http action allow alarm
    content-length maximum 1 action allow alarm
    content-type-verification match-req-rsp action allow alarm
    max-header-length request 1 response 1 action allow alarm
    max-uri-length 1 action allow alarm
    port-misuse default action allow alarm
    request-method rfc default action allow alarm
    request-method extension default action allow alarm
    transfer-encoding type default action allow alarm
 
 application im aol server deny name login.user1.aol.com
 application im msn server deny name messenger.hotmail.com


! Apply the policy to an inspection rule.
ip inspect name firewall appfw mypolicy
ip inspect name firewall http

! Apply the inspection rule to all HTTP traffic entering the FastEthernet0/0 interface.
interface FastEthernet0/0
ip inspect firewall in


Author: mamo PostPosted: Mon Aug 30, 2010 5:18 pm    Post subject:
    ----
Thank you all, I will test the last config



Networking/Security Forums -> Firewalls // Intrusion Detection - External Security


output generated using printer-friendly topic mod, All times are GMT + 2 Hours

Goto page Previous  1, 2  :||:
Page 2 of 2

Powered by phpBB 2.0.x © 2001 phpBB Group