Solved

Cisco asax sourcefire Ips

Posted on 2016-07-19
7
77 Views
Last Modified: 2016-08-01
Hi,
i have a Cisco ASAx with sourcefire IPS.
I'am tryng to perform a rules for deny a particular url like http://www.myname.com/etc/etc.

Is this possible or i need URL filtering license ?
Thank you.
Mauro
0
Comment
Question by:Pelitti
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
7 Comments
 
LVL 14

Accepted Solution

by:
SIM50 earned 500 total points
ID: 41719159
You can block it without URL filtering license. URL filtering license is needed for reputation and category based rules.
0
 

Author Comment

by:Pelitti
ID: 41719167
Thank you.

Does anyone already try this?

Thank you.
Mauro
0
 
LVL 9

Expert Comment

by:Ian Arakel
ID: 41722293
Hi there,

Is the setup integrated with and AD for user based access?
0
Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

 
LVL 57

Expert Comment

by:Pete Long
ID: 41737352
how you do this depends on whether you are using the FMC aplliance or managing the SFR module directly from the ASDM?

If it's the latter, see this article ASA 5506-X / 5508-X Setup FirePOWER Services (for ASDM)

Scroll down to 'Blocking a Particular URL with FirePOWER Services'

If you are using the FMC, Let me know, and I'll create a new article for that.

Regards,

Pete
1
 

Author Comment

by:Pelitti
ID: 41737364
Hi,
thank you.
I am using FMC, but i am able to perform the step.
I will like to perform this by a new rules.
What i need is something like: This url is ok if an ip address perform a request in a second, is not ok and i need to drop it if an ip address perform 8-10 request in 2 seconds.

Thank you.
0
 
LVL 57

Expert Comment

by:Pete Long
ID: 41737419
Ohh thats a good question! Is this just for one IP/group? Normally I'd do this will a Policy framework rather than the FirePower?

Pete
0
 

Author Comment

by:Pelitti
ID: 41737429
Maybe I should open a new question.
I would do this for any ip, not for a preset.

Best regards.
Mauro
0

Featured Post

Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Concerto Cloud Services, a provider of fully managed private, public and hybrid cloud solutions, announced today it was named to the 20 Coolest Cloud Infrastructure Vendors Of The 2017 Cloud  (http://www.concertocloud.com/about/in-the-news/2017/02/0…
This past year has been one of great growth and performance for OnPage. We have added many features and integrations to the product, making 2016 an awesome year. We see these steps forward as the basis for future growth.
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question