At the time of this post, I had limited exposure to ASA 9.2 code and particularly using FQDN access-lists. Essentially what you can do is create an object with the Fully Defined Domain Name (FQDN) of a domain nested within. You can create multiple of these and place them inside a single object-group to keep things tidy (and you should!).…
Tag Archives ASA
The ASA firewall is not a great choice in dealing with a volumetric DDOS, but they can come in handy with an application layer attack, such as a common HTTP POST/GET request from the attacker. Within the ASA, you can filter certain strings that may come from an application layer payload using the regex command. The following link provides some insight into…