Cisco ASA - Recent Questions, Troubleshooting & Support
I want to block social
1. Load your Internet explorer
2. Click Tools
3. Click Internet Options
4. Click the Privacy tab
5. Under the Privacy window, Click Sites
6. Type in the site address that you want to Block and Click OK. Remember this technique only blocks on one site at a time. Parental control software will allow you to block multiple sites and categories.
And in the case of Mozila Firefox you have to download a addon(plugin) called 'Foxfilter' to block certain websites
No power to cisco 5505 ASA
http://www.cisco.com/en/US/support/tsd_cisco_worldwide_contacts.html
From the US, you can call: 1.800.553.2447
From there, Cisco will be able to tell you what your warranty status is by the device's serial number, and can also provide you with a quote if your warranty has expired.
How to counfugre asa 5505 cisco Router
Use the Cisco ASDM or SDM software, that will give you an easy graphical interface to configure the ASA. One of them would have been shipped with the device.
Don't forget the ASA has to pre-configured, just a simple config. Have HTTPS enabled and telnet/SSH helps as well if you dont have a serial port or the console cable.
Cisco's website will give you quite a lot of info for free...
Cisco ASA 5505 Firmware
Yes, it is possible and Yes you have to purchase it from Cisco.
Sorry, that is how they make the big bucks.
Consider a service contract on the unit, then you can download the firmware much cheaper.
1. I have a ASA
HI,
You shall do the same with MPF. Create a regex filter to identify the types of files you would like to block,
e.g.
1
2
3
4
5
regex archive-type1 ".*\.([Zz][Ii][Pp]'[Tt][Aa][Rr]'[Tt][Gg][Zz]) HTTP/1.[01]"
regex archive-type2 ".*\.([Tt][Aa][Rr].([Gg][Zz]'[Bb][Zz]2)'7[Zz]) HTTP/1.[01]"
regex doc-type1 ".*\.([Dd][Oo][Cc]'[Xx][Ll][Ss]'([Pp]){2}[Tt]) HTTP/1.[01]"
regex doc-type2 ".*\.([Pp][Dd][Ff]'[Oo][Dd][Tt]) HTTP/1.[01]"
regex exe-type1 ".*\.([Ee][Xx][Ee]'[Vv][Bb][Ss]'[Vv][Bb][Aa]) HTTP/1.[01]"
Create regex for Content-Type Application/*
1
2
regex application-header "application/*"
regex content-type "Content-Type"
Classify regex that matches the extension types
class-map type regex match-any ext-types
match regex doc-type1
match regex doc-type2
match regex archive-type2
match regex archive-type1
match regex exe-type1
Capture the http response that contains content-type and application/* header
2
class-map type inspect http match-all http-header-response
match response header regex content-type regex application-header
Capture http request packet that matches the class ext-types
1
2
class-map type inspect http match-all http-request
match request uri regex class ext-types
HTTP is the interesting traffic
1
2
3
4
access-list http-traffic extended permit tcp any any eq www
access-list http-traffic extended permit tcp any any eq 8080
class-map http-traffic-class
match access-list http-traffi
Create policy to prevent download attempt via http request
1
2
3
4
5
6
7
policy-map type inspect http block-http-download
parameters
protocol-violation action drop-connection log
class http-header-response
drop-connection log
class http-request
reset log
Apply policy on the interesting traffic
1
2
3
policy-map inside-http
class http-traffic-class
inspect http block-http-download
Apply the policy onto interface to take effect
1
service-policy inside-http interface inside
Hope this would help.
Not finding what you are looking for?