Guest

Preview Tool

Cisco Bug: CSCta41482 - ASA 8.2(1): inspect-http: url filter breaks when modifying the regex map

Last Modified

Nov 09, 2016

Products (1)

  • Cisco ASA 5500-X Series Firewalls

Known Affected Releases

8.2(1)

Description (partial)

Symptom:
This bug is to further document the procedure when modifying regular expression class maps for the inspect http only.  You will need to remove and add the service policy after making the changes so they take effect. 

When running http inspection and url filtering, when making a change to the associated regex class map of type inspect-http, any subsequent changes like removing a match statement will cause the asa to block all urls until you do the workaround listed below. 

example:
regex domainlist1 "\site\.com"

class-map type inspect http match-any BlockDomainClass  
match request header host regex domainlist1

if we remove the match above and change it to domainlist2 for example, then all urls will be blocked until you remove and add the service policy back in.

Conditions:
ASA 8.2.1 running inspect HTTP url filtering using regex
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.