HTTP inspection

From: Braychuck Vitaliy (Vitaliy.Braychuck@incom.ua)
Date: Tue Nov 04 2008 - 13:46:16 ARST

• Next message: Paul Alexander: "Re: Link Bandwidth details"
• Previous message: Roman Rodichev: "RE: OT-Networkers for Obama"
• Next in thread: Petr Lapukhov: "Re: HTTP inspection"
• Maybe reply: Petr Lapukhov: "Re: HTTP inspection"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi folks.

Could anyone explain me how http inspection works. My task is suppress to
download files through http from Internet.

It's my topology:

Inside internet

-----------------(R1)-------------------------

 fa0/0 fa0/1

I've written class & policy maps:

class-map FILES

match protocol http url "*.zip|*.arj"

policy-map DROP_DWNLD

class FILES

 drop

And at this point I have a question. In what direction should I apply this
policy. I know, what http response from server don't have any requests from
client, so we can't match any filenames.

Could I apply this policy in output direction? I mean on interface fa0/0 in
output direction? Or I should apply it only in inside direction and match
requests from clients?

WBR,

Vitalii Braichuk

Blogs and organic groups at http://www.ccie.net

• Next message: Paul Alexander: "Re: Link Bandwidth details"
• Previous message: Roman Rodichev: "RE: OT-Networkers for Obama"
• Next in thread: Petr Lapukhov: "Re: HTTP inspection"
• Maybe reply: Petr Lapukhov: "Re: HTTP inspection"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Mon Dec 01 2008 - 08:18:29 ARST