Lab 2.29 ASA Clientless SSL VPN
Hello everyone,
I cannot configure Webtype ACL on ASA as INE's solution for the lab 2.29 ASA Clientless SSL VPN, could u plz figure out why? Thank! [:S]
Rack1ASA1(config)# access-list ACL_WEBVPN_FILTER web permit url http://*.com:80
ERROR: Invalid hostname: '*.com'
INFO: A hostname must start and end with a letter or digit, and have as interior characters only letters, digits, or a hyphen.
ERROR: Unrecognized URL syntax.
Regards,
Comments
Hello rockerpit!
I have just pasted your access list in 8.2 code and it accepted it. However, 8.0 code did not. The message basicaly says that we cannot use anything beside letters, digits and '-' sign after two slashes. So, no * or .
I did some investigation on this on Cisco's site section dedicated to access lists on 8.0 code and it turns out that many of given web type ACL examples don't work.
(http://www.cisco.com/en/US/docs/security/asa/asa80/configuration/guide/traffic.html#wp1072889). They do on 8.2 code, though.
So, what ASA code we are going to use on the lab?
Or maybe there is some escape character that will allow the usage of *, ? or .
Regs,
Hello spop,
I'm not sure about the version of ASA image used in the lab exam. According to this link: https://learningnetwork.cisco.com/docs/DOC-3241, ASA image 8.x would be used. [:)]
Hi,
I believe this is due to a known issue on the earlier codes of 8.0, and this is no longer scene in any of the new releases. You'll definitely not face this issue in the newer codes.
Thank you.