12-75
Device Manager Guide, Cisco ACE 4700 Series Application Control Engine Appliance
OL-26645-02
Chapter 12 Configuring Traffic Policies
Configuring Rules and Actions for Policy Maps
Header The name and value in an HTTP header are used for application inspection decisions.
1. In the Header field, select one of the predefined HTTP headers to be matched, or select HTTP
Header to specify a different HTTP header.
2. If you select HTTP Header, in the Header Name field, enter the name of the HTTP header to
match. Valid entries are unquoted text strings with no spaces and a maximum of 64
alphanumeric characters.
3. In the Header Value field, enter the header value expression string to compare against the
value in the specified field in the HTTP header. Valid entries are text strings with a maximum
of 255 alphanumeric characters. The ACE appliance supports regular expressions for
matching. To include spaces in the string, enclose the entire string in quotes. All headers in
the header map must be matched. See Table 12-33 for a list of the supported characters that
you can use in regular expressions.
Header Length The length of the header in the HTTP message is used for application inspection decisions.
1. In the Header Length Type field, specify whether HTTP header request or response messages
are to be used for application inspection decisions:
–
Request—Indicates that HTTP header request messages are to be checked for header
length.
–
Response—Indicates that HTTP header response messages are to be checked for header
length.
2. In the Header Length Operator field, select the operand to be used to compare header length:
–
Equal To—Indicates that the header length must equal the number in the Header Length
Value (Bytes) field.
–
Greater Than—Indicates that the header length must be greater than the number in the
Header Length Value (Bytes) field.
–
Less Than—Indicates that the header length must be less than the number in the Header
Length Value (Bytes) field.
–
Range—Indicates that the header length must be within the range specified in the Header
Length Lower Value (Bytes) field and the Header Length Higher Value (Bytes) field.
3. Enter values to apply for header length comparison:
–
If you select Equal To, Greater Than, or Less Than in the Header Length Operator field,
the Header Length Value (Bytes) field appears. In the Header Length Value (Bytes) field,
enter the number of bytes for comparison. Valid entries are integers from 0 to 255.
–
If you select Range in the Header Length Operator field, the Header Length Lower Value
(Bytes) and the Header Length Higher Value (Bytes) fields appear:
1. In the Header Length Lower Value (Bytes) field, enter the lowest number of bytes to
be used for this match condition. Valid entries are integers from 0 to 255. The number in
this field must be less than the number entered in the Header Length Higher Value (Bytes)
field.
2. In the Header Length Higher Value (Bytes) field, enter the highest number of bytes to
be used for this match condition. Valid entries are integers from 1 to 255. The number in
this field must be greater than the number entered in the Header Length Lower Value
(Bytes) field.
Table 12-30 HTTP Deep Packet Inspection Match Types (continued)
Match Condition Type Description
Comments to this Manuals