[c-nsp] Block https

masood at nexlinx.net.pk masood at nexlinx.net.pk
Wed Jul 15 07:02:38 EDT 2009


Man, thts pretty straightforward. all u needed is

http://www.cisco.com/en/US/products/ps5855/products_configuration_example09186a0080ab4ddb.shtml

if i am remembering correctly, you can block https using proxy/cache
server; If it is Squid thn i can help you.

Regards,
Masood

> Hi
>
> One I used a while ago to test was the below
>
> ip urlfilter allow-mode on
> ip urlfilter exclusive-domain deny www.theregister.co.uk
>
> is a while since ive used this but you can check the Cisco Docs for the ip
> urlfilter feature, if you want to block based on IP just use access lists
> as normal to block traffic to that IP.
>
> Regards
> Kev
>
> []----------------------------------------------------------------------------[]
>   Kev Barrass                      			|  YHMAN Operations Team
> []------------------------------------------------------------[www.yhman.net.uk]
> -----Original Message-----
> From: cisco-nsp-bounces at puck.nether.net
> [mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Mohammad Khalil
> Sent: 15 July 2009 08:44
> To: cisco-nsp at puck.nether.net
> Subject: [c-nsp] Block https
>
>
>
>
> I want to block the url https://www.facebook.com
>
>
> Without using NBAR
>
> Using access-lists ??
>
> And if I want to block based on the IP address it has a lot
> of IP addresses ( i dont want to block a whole class)
>
>
> And the cache only blocks based on HTTP port 80
>
>
> _________________________________________________________________
> Invite your mail contacts to join your friends list with Windows Live
> Spaces. It's easy!
> http://spaces.live.com/spacesapi.aspx?wx_action=create&wx_url=/friends.aspx&mkt=en-us
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>




More information about the cisco-nsp mailing list