MPF Advanced Application Inspection
The ASA supports deep packet inspection for many protocols. This lab will focus onHTTP, and FTP. You will see that it is rather simple to make sure that all TCP port 80
Traffic is RFC compliant HTTP traffic. You will see that applications can be devious and
Tunnel their transactions in what looks like valid HTTP requests and responses.
You may be able to define regular expressions to match the offending application, and have
The ASA recognize and drop the traffic. You will also see that you can filter FTP traffic to
Allow/deny specific FTP commands.
谢谢分享
页:
[1]