Brocade Mobility RFS Controller CLI Reference Guide (Supporting software release 5.5.0.0 and later) User Manual
Page 394
378
Brocade Mobility RFS Controller CLI Reference Guide
53-1003098-01
4
Configures HTTP filters. This command configures rules to deny or permit HTTP access. A deny rule
specifies the destination domains and source and destination IPs to deny content access. A permit
rule specifies the destination domains and source and destination IPs to permit content access.
Supported in the following platforms:
•
Service Platforms — Brocade Mobility RFS9510
Syntax:
http-access precedence <1-100> [deny|permit] {destination-domain
<DOMAIN-NAME>|
destination-domain-regex <WORD>|destination-ip <IP>|mimetype-regex
<WORD>|
source-ip <IP>|url-regex <URL>}
Parameters
http-access precedence <1-100> [deny|permit] {destination-domain
<DOMAIN-NAME>|
destination-domain-regex <WORD>|destination-ip <IP>|mimetype-regex <WORD>|
source-ip <IP>|url-regex <URL>}
Example
nx4500-5CFA2B(config-smart-cache-policy-test)#http-access precedence 4 deny
destination-domain .TechPubs
nx4500-5CFA2B(config-smart-cache-policy-test)#
nx4500-5CFA2B(config-smart-cache-policy-test)#show context
smart-cache-policy test
forward-proxy vlan 10-20
http-access precedence
<1-100>
Configures HTTP access rules that determine if a IP address is to be accessed or not. You can create multiple
HTTP access rules and assign precedence values to each. These rules are applied in order of their
precedence.
•
<1-100> – Specify a precedence rule from 1 - 100.
Lower the precedence, higher is the rule priority.
[deny|permit]
Configures the deny or permit access parameters for this rule
•
permits – Permits access if the specified parameters are matched
•
deny – Denies access if the specified parameters are matched
destination-domain
<DOMAIN-NAME>
Optional. Specifies the destination domain to match against the hostname in the HTTP request URL
destination-domain-regex
<WORD>
Optional. Specifies a regular expression matching on originating server names
The destination domain regex is the same as the destination domain, but the destination domain regex allows
your to use standard expression matching on originating server names.
destination-ip
[<IP>/M|any]
Optional. Specifies the originating server’s IP address, obtained from the HTTP request URL
Provide the IP address in the A.B.C.D/M format.
Specify any to consider all originating servers.
mimetype-regex
<WORD>
Optional. Specifies the regular expression used to match the mimetype of a HTTP request
source-ip
[<IP>/M|any]
Optional. Specifies the source IP address (client’s IP address) that is sent out as part of the HTTP request.
Provide the IP address in the A.B.C.D/M format.
Specify any to consider all client requests.
url-regex <URL>
Optional. Specifies regular expressions used to match any part of a requested URL, including the transfer
protocol and originating server hostname