http-analyze
Enables HTTP URL analysis on the
WLAN
Supported on the following devices:
- Access Points: AP5010, AP310i/e, AP410i/e, AP505i, AP510i, AP510e, AP560i, AP6522, AP6562, AP7161, AP7502,
AP7522, AP7532, AP7562, AP7602, AP7612, AP7622, AP763, AP7662, AP8163, AP8543,
AP8533.
- Service Platforms:
NX5500, NX7500, NX9500, NX9600
- Virtual Platforms: CX9000, VX9000
Syntax
http-analyze [filter|syslog]
http-analyze filter [images|post|query-string]
http-analyze syslog host <IP/HOSTNAME> {port <1-65535>}
{proxy-mode [none|through-controller|through-rf-domain-manager]}
Parameters
http-analyze filter [images|post|query-string]
| filter |
Filters URLs, based on the parameters set, before forwarding
them |
| images |
Filters out URLs referring to images (does not forward URL requesting
images) |
| post |
Filters out URLs requesting POST (does not forward POST requests). This
option is disabled by default. |
| query-string |
Removes query strings from URLs before forwarding them (forwards
requests and no data). This option is disabled by default. |
http-analyze syslog host <IP/HOSTNAME> {port <1-65535>}
{proxy-mode [none|through-controller|through-rf-domain-manager]}
| syslog host <IP/HOSTNAME> |
Forwards client and URL information to a syslog server
- host
<IP/HOSTNAME> – Specify the syslog server's IP address or
hostname
|
| port <1-65535> |
Optional. Specifies the UDP port to connect to the syslog server from 1
- 65535 |
| proxy-mode [none|through-controller| through-rf-domain-manager] |
Optional. Specifies if the request is to be proxied through another
device
- none – Requests are
sent directly to syslog server from device
- through-controller –
Proxies requests through the wireless controller configuring the
device
- through-rf-domain-manager – Proxies the requests through the local RF
Domain manager
|
Examples
ap505-13403B(config-wlan-test)#http-analyze syslog host 10.234.160.4 port 21 proxy-mode
through-controller
ap505-13403B(config-wlan-test)#show context
wlan test
ssid test
vlan 1
bridging-mode local
encryption-type gcmp256
authentication-type eap
dynamic-vlan-assignment allowed-vlans 2-4
protected-mgmt-frames mandatory
protected-mgmt-frames sa-query attempts 1
use aaa-policy test
http-analyze syslog host 10.234.160.4 port 21 proxy-mode through-controller
controller-assisted-mobility
dpi metadata http
ap505-13403B(config-wlan-test)#
