Jump to content
hoadqtk4

Filter IM with ASA

Recommended Posts

LAB filter IM (Yahoo messenger)

with this lab, you can filter im by im-id, ip address, protocol, etc...

Topo:

Hidden Content

    Give reaction to this post to see the hidden content.

Share this post


Link to post
Share on other sites

can I config the above without layer 7 class-map like this:

 

policy-map type inspect im mypolclass

parameters

match ip-address 192.168.111.0 255.255.255.0

match protocol yahoo-im msn-im

drop-connection log

 

class-map clm

match port tcp range 1 65535

 

policy-map plm

class clm

inspect im mypolclass

 

service-policy plm interface outside

service-policy plm interface inside

 

 

 

and also what if I want to add one more host ip address to match in L7 policy-map

match ip-address 192.168.111.0 255.255.255.0

match host 192.168.1.10

 

will it accept???

Share this post


Link to post
Share on other sites

Hi,

i think it still works correctly

but in lab below, i want to do formally.

if following you do, everyone can't distinguish "match any" & "match all"

they 're only in class-map

 

for ex:

 

ASA(config)# class-map type inspect im ?

 

configure mode commands/options:

WORD < 41 char class-map name

match-all Logical-AND all matching statements under this classmap

match-any Logical-OR all matching statements under this classmap

 

thanks for sharing...

Share this post


Link to post
Share on other sites

I have a doubt suppose if I need to configure IM filtering for network 10.44.44.0/24 and In that network block if I need to allow only yahoo messenger for host 10.44.44.10/24, and for host 10.44.44.20/24 only msn messenger then how it is configured? Do I need to create two policy maps ?

 

please help

Share this post


Link to post
Share on other sites

hi copycat221,

 

I think u have to create 2 classes and insert them to only 1 policy then apply to in/out side

maybe the same here:

Hidden Content

    Give reaction to this post to see the hidden content.

 

I filtered msn at PC (192.168.1.101) and yahoo at PC (192.168.1.100) and test successfully with them.

 

Cheers

Share this post


Link to post
Share on other sites

Web based and also kind meeboo and more chat messages ,But we are using internal office communicator that should not effect .

 

Thanks in advance

Share this post


Link to post
Share on other sites

I have a doubt suppose if I need to configure IM filtering for network 10.44.44.0/24 and In that network block if I need to allow only yahoo messenger for host 10.44.44.10/24, and for host 10.44.44.20/24 only msn messenger then how it is configured? Do I need to create two policy maps ?

 

please help

 

is there is any diffrence?

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


×
×
  • Create New...