Filtering URLs and FTP Requests with an External Server
Click OK to close this dialog box.
Step 5
Filtering HTTP URLs
This section describes how to configure HTTP filtering with an external filtering server and includes the
following topics:
•
Enabling Filtering of Long HTTP URLs
By default, the adaptive security appliance considers an HTTP URL to be a long URL if it is greater than
1159 characters. You can increase the maximum length allowed.
To configure the maximum size of a single URL, perform the following steps:
Step 1
In the URL Filtering Servers pane, click Advanced to display the Advanced URL Filtering dialog box.
Step 2
In the Long URL Support area, check the Use Long URL check box to enable long URLs for filtering
servers.
Step 3
Enter the maximum URL length allowed, up to a maximum of 4 KB.
Step 4
Enter the memory allocated for long URLs in KB.
Step 5
Click OK to close this dialog box.
Configuring Filtering Rules
Before you can add an HTTP, HTTPS, or FTP filter rule, you must enable a URL filtering server. To
enable a URL filtering server, choose Configuration > Firewall > URL Filtering Servers.
To configure filtering rules, perform the following steps:
From the ASDM main window, choose Configuration > Firewall > Filter Rules.
Step 1
In the toolbar, click Add to display the types of filter rules that are available to add from the following
Step 2
list:
•
•
•
•
•
Step 3
If you chose Add Filter ActiveX Rule, specify the following settings:
•
•
Cisco ASA 5500 Series Configuration Guide using ASDM
34-6
Enabling Filtering of Long HTTP URLs, page 34-6
Add Filter ActiveX Rule
Add Filter Java Rule
Add Filter HTTP Rule
Add Filter HTTPS Rule
Add Filter FTP Rule
Click one of the following radio buttons: Filter ActiveX or Do not filter ActiveX.
Enter the source of the traffic to which the filtering action applies. To enter the source, choose from
the following options:
–
Enter any to indicate any source address.
Chapter 34
Configuring Filtering Services
OL-20339-01