• RSS
  • Twitter
  • FaceBook

Security Forums

Log in

FAQ | Search | Usergroups | Profile | Register | RSS | Posting Guidelines | Recent Posts

Active direcory and firewall

Users browsing this topic:0 Security Fans, 0 Stealth Security Fans
Registered Security Fans: None
Goto page Previous  1, 2
Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> Firewalls // Intrusion Detection - External Security

View previous topic :: View next topic  
Author Message
krugger
SF Mod
SF Mod


Joined: 08 Jun 2006
Posts: 16777209


Offline

PostPosted: Fri Aug 27, 2010 5:49 pm    Post subject: Reply with quote

Checkout the HTTP Inspection Engine introduced in IOS 12.3, althought you might want 12.4 because it has classes for most common IM programs.

Something like this would be the config:

Code:

! Define the HTTP policy.
appfw policy-name mypolicy
  application http
    strict-http action allow alarm
    content-length maximum 1 action allow alarm
    content-type-verification match-req-rsp action allow alarm
    max-header-length request 1 response 1 action allow alarm
    max-uri-length 1 action allow alarm
    port-misuse default action allow alarm
    request-method rfc default action allow alarm
    request-method extension default action allow alarm
    transfer-encoding type default action allow alarm
 
 application im aol server deny name login.user1.aol.com
 application im msn server deny name messenger.hotmail.com


! Apply the policy to an inspection rule.
ip inspect name firewall appfw mypolicy
ip inspect name firewall http

! Apply the inspection rule to all HTTP traffic entering the FastEthernet0/0 interface.
interface FastEthernet0/0
ip inspect firewall in

Back to top
View user's profile Send private message
mamo
Just Arrived
Just Arrived


Joined: 18 Aug 2010
Posts: 0


Offline

PostPosted: Mon Aug 30, 2010 5:18 pm    Post subject: Reply with quote

Thank you all, I will test the last config
Back to top
View user's profile Send private message
Display posts from previous:   

Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> Firewalls // Intrusion Detection - External Security All times are GMT + 2 Hours
Goto page Previous  1, 2
Page 2 of 2


 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

Community Area

Log in | Register