5 Things I bet you didn’t know your Cisco ASA FW could do

I've compiled 5 very useful ASA features that I find most customers don't know about yet. You've probably heard of one or even two but I'm betting not all 5. How in-depth is your ASA knowledge, put it to the test.
Application Firewalling
The ASAs include several deep packet inspection engines in its software. This makes the ASA not only a stateful packet filtering firewall but also an application firewall. The most popular is the http engine. The way all of the application inspection engines work is you pick an interface you want to inspect traffic on, then you define the traffic matching criteria, then you define what application level data you want to write policy for. This is configured here in ASDM: Firewall / Service Policy Rules
Figure 1: Define interface to apply policy to

Figure 2: Define traffic match criteria, I picked ACL

Figure 3: Choose a application inspection, I chose http

Figure 4: Configure the http inspection rules, I chose medium security. There is also a expert view where you can create your own regex expression for any of the URI fields or body.

Your done!

• Cisco
• Security
• ASA
• CIsco ASA
• Cisco Security
• firewall
• Heary
• Jamey Heary
• security