Chapter37 Cisco Common Classification Policy Language
Class Maps
37-14
Cisco Router and Security Device Manager 2.5 User’s Guide
OL-4015-12
Regular Expressions
Click this box to specify regular expressions to be matched against. Choose an
existing regular expression class map, or create a new one that will match the
strings that you are inspecting for. See Add or Edit Regular Expression for more
information about creating regular expressions. To examine an existing map
without leaving this dialog, choose the map in the Select an existing map list, and
click View.

Field Name and Configuration Options

You can include fields within the header to the inspection criteria and specify
length, count, and strings to inspect for. Click Add to include a field, and enter
criteria in the dialog displayed.
HTTP Request Header Fields
Choose the type of header field from the list, and specify the inspection criteria
for it.
Length Greater Than
Click this box to specify a length that this field should not exceed, and enter the
number of bytes. For example, you might block a request whose cookie field
exceeds 256 bytes, or whose user-agent field exceeds 128 bytes.
Count Greater Than
Click this box to specify the number of times that this field can be repeated in the
header, and enter a number. For example you might block a request that has
multiple content-length header lines by entering the value 1. This example is an
effective measure for preventing session smuggling.
Regular Expressions
Click this box to specify regular expressions to be matched against. Choose an
existing regular expression class map, or create a new one that will match the
strings that you are inspecting for. See Add or Edit Regular Expression for more