14-53

User

Guide

for

the

Cisco

Application

Networking

Manager

5.2

OL-26572-01

Chapter

14

Configuring

Traffic

Policies

Configuring

Rules

and

Actions

for

Policy

Maps

Ta

b

l

e

14-22

Layer

7

HTTP

Deep

Packet

Inspection

Policy

Map

Match

Conditions

Match

Condition

Description

Content

Content

contained

within

the

HTTP

entity-body

that

i

s

used

for

protocol

inspection

decisions.

Do

the

following:

a.

In

the

Content

Expression

field,

enter

the

content

that

is

to

be

matched.

Valid

entries

are

alphanumeric

strings

from

1

to

255

characters.

b.

In

the

Content

Offset

(Bytes)

field,

enter

the

number

of

bytes

to

be

ignored

starting

with

the

first

byte

of

the

Message

body,

after

the

empty

line

(CR,LF,CR,LF)

between

the

headers

and

the

body

of

t

he

message.

Valid

entries

ar

e

fr

om

1

to

255

bytes.

Content

Length

Content

parse

length

in

an

HTTP

message

that

is

used

for

protocol

inspection

decisions.

Do

the

following:

a.

In

the

Content

Length

Operator

field,

choose

the

operand

to

be

used

to

compare

content

length:

–

Equal

To—Content

length

must

equal

the

number

in

the

Content

Length

Value

(Bytes)

fi

el

d.

–

Greater

Than—Content

length

must

be

greater

than

the

number

in

the

Content

Length

Value

(Bytes)

field.

–

Less

Than—Content

length

must

be

less

than

the

number

in

the

Content

Length

Value

(Bytes)

field.

–

Range—Content

length

must

be

within

the

range

specified

in

the

Content

Length

Lower

Value

(Bytes)

field

and

the

Content

Length

Higher

Value

(Bytes)

field.

b.

Enter

values

to

apply

for

content

length

comparison

as

follows:

–

If

you

chose

Equal

To,

Greater

Than,

or

Less

Than

in

the

Content

Length

Operator

field,

the

Content

Length

V

alue

(Bytes)

field

appears.

In

the

Content

Length

V

alue

(Bytes)

field,

enter

the

number

of

bytes

for

comparison.

Valid

entries

are

from

0

to

4294967295.

–

If

you

chose

Range

in

the

Content

Length

Operator

field,

the

Content

Length

Lower

Value

(Bytes)

and

the

Content

Length

Higher

Value

(Bytes)

fields

appear:

1.

In

the

Content

Length

Lower

Value

(Bytes)

field,

enter

the

lowest

number

of

bytes

to

be

used

for

this

match

condition.

Valid

entries

are

from

0

to

4294967295.

The

number

in

this

field

must

be

less

than

the

number

entered

in

the

Content

Length

Higher

Value

(Bytes)

field.

2.

In

the

Content

Length

Higher

Value

(Bytes)

field,

enter

the

highest

number

of

bytes

to

be

used

for

this

match

condition.

Valid

entries

are

from

1

to

4294967295.

The

number

in

this

field

must

be

greater

than

the

number

entered

in

the

Content

Length

Lower

Value

(Bytes)

field.

Content

Type

Verification

Match

command

that

verifies

the

content

MIME-type

messages

with

the

header

MIME-type.

This

inline

match

command

limits

the

MIME-types

in

HTTP

messages

allowed

through

the

ACE.

It

verifies

that

the

header

MIME-type

value

is

in

the

internal

list

of

supported

MIME-types

and

the

header

MIME-type

matches

the

actual

content

in

the

data

or

entity

body

portion

of

the

message.

If

they

do

not

match,

the

ACE

performs

the

specified

Layer

7

policy

map

action.