Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Write a policy to permit traffic to *.abc.com

This thread has been viewed 0 times

  • 1.  Write a policy to permit traffic to *.abc.com

    Posted Jan 16, 2014 12:27 PM

    Can a polkicy be written to either permit or deny traffic to something like *.abc.com? I'm running 6.1.3 and my options for source or destination is either:

     

    alias

    any

    host

    localip

    network

    user


    Cannot put something like *.abc.com in either one of those fields.

     

    Regards,

    Tony Marques



  • 2.  RE: Write a policy to permit traffic to *.abc.com
    Best Answer

    EMPLOYEE
    Posted Jan 16, 2014 12:32 PM
    Sure. Create a netdestination and add the DNS name. Then use the
    netdestination alias in your ACL.

    Be sure to turn on name lookup on your controller.


  • 3.  RE: Write a policy to permit traffic to *.abc.com

    Posted Jan 16, 2014 12:39 PM

    I found where to do this as soon as you posted a reply. I guess I should have not been so quick to post a questions, but thanks for the reply anyways. At a minimum, you confirmed that I was going in the right direction.

     

    Regards,

    Tony Marques