Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

url filtering question on ASA?

Posted on 2010-11-26
8
Medium Priority
?
470 Views
Last Modified: 2012-06-21
Hi Experts,

i came across this situation where in websense was configured for url filtering on the ASA and it had this command:

filter url ftp 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 allow

according to my understanding filter url is for http traffic but the above command points me to http traffic on port 21. is that correct?? if so what kind of traffic is it? and how does the websense deal with this or what will it look for?

i ask this coz in this scenario when some one does a http://ftp.xyz.com it does not allow access to this site. but when i remove this command everything is fine.

any help would be appreciated.

thx.
0
Comment
Question by:ullas_unni
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 4
8 Comments
 
LVL 20

Expert Comment

by:RPPreacher
ID: 34221580
This filters FTP connections from any source to any source.  Port 21.  Not HTTP.
0
 
LVL 4

Author Comment

by:ullas_unni
ID: 34221635
i thought that was done by the command

filter ftp 21 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 allow
0
 
LVL 20

Accepted Solution

by:
RPPreacher earned 2000 total points
ID: 34221839
0
NFR key for Veeam Backup for Microsoft Office 365

Veeam is happy to provide a free NFR license (for 1 year, up to 10 users). This license allows for the non‑production use of Veeam Backup for Microsoft Office 365 in your home lab without any feature limitations.

 
LVL 4

Author Comment

by:ullas_unni
ID: 34221972
i understand that port is optional but the doc says:

 'Replace port with the port number on which to filter HTTP traffic if a different port than the default port for HTTP (80) is used. In order to identify a range of port numbers, enter the start and end of the range separated by a hyphen.'

so how is it ftp traffic?
0
 
LVL 20

Expert Comment

by:RPPreacher
ID: 34222161
Because it is.  Because that is the command for filtering FTP.  Because it says "filter url FTP"

Because if you were going to filter HTTP, it would say "filter url HTTP"
0
 
LVL 4

Author Comment

by:ullas_unni
ID: 34222245
okay.. then does filter ftp 21 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 allow do the same functionality?
0
 
LVL 20

Expert Comment

by:RPPreacher
ID: 34222248
filter ftp is 6.x command
filter url ftp is 7.0 and 8.0 command
0
 
LVL 4

Author Comment

by:ullas_unni
ID: 34222252
you know what.. i think i got confused! i looked this up in the command reference tool and got the idea. anyways thx.
0

Featured Post

On Demand Webinar: Networking for the Cloud Era

Did you know SD-WANs can improve network connectivity? Check out this webinar to learn how an SD-WAN simplified, one-click tool can help you migrate and manage data in the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
Concerto Cloud Services, a provider of fully managed private, public and hybrid cloud solutions, announced today it was named to the 20 Coolest Cloud Infrastructure Vendors Of The 2017 Cloud  (http://www.concertocloud.com/about/in-the-news/2017/02/0…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

721 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question