Security

Reply
Contributor II
Posts: 80
Registered: ‎05-28-2010

Write a policy to permit traffic to *.abc.com

Can a polkicy be written to either permit or deny traffic to something like *.abc.com? I'm running 6.1.3 and my options for source or destination is either:

 

alias

any

host

localip

network

user


Cannot put something like *.abc.com in either one of those fields.

 

Regards,

Tony Marques

Guru Elite
Posts: 8,182
Registered: ‎09-08-2010

Re: Write a policy to permit traffic to *.abc.com

Sure. Create a netdestination and add the DNS name. Then use the
netdestination alias in your ACL.

Be sure to turn on name lookup on your controller.

Tim Cappalli | Aruba ClearPass TME
@timcappalli | ACMX #367 / ACCX #480 / ACEAP / CWSP
Contributor II
Posts: 80
Registered: ‎05-28-2010

Re: Write a policy to permit traffic to *.abc.com

I found where to do this as soon as you posted a reply. I guess I should have not been so quick to post a questions, but thanks for the reply anyways. At a minimum, you confirmed that I was going in the right direction.

 

Regards,

Tony Marques

Search Airheads
Showing results for 
Search instead for 
Did you mean: