Cisco Cisco Expressway
5.
Configure the rule to your requirements. Here is some advice for each of the fields:
Column
Description
Description Enter a meaningful description for this rule, to help you recognize its purpose.
Url
Specify a URL that MRA clients are allowed to access. For example, to allow access to
https://www.example.com:8080/resource/path
just type it in exactly like that.
a.
The protocol the clients are using to access the host must be
http://
or
https://
b.
Specify a port when using a non-default port eg.
:8080
(Default ports are 80 (http) and 443 (https))
c.
Specify the path to limit the rule scope (more secure), eg.
/resource/path
If you select Prefix match for this rule, you can use a partial path or omit the path. Be
aware that this could be a security risk if the target resources are not resilient to
malformed URLs.
aware that this could be a security risk if the target resources are not resilient to
malformed URLs.
Allowed
methods
methods
Select Use defaults or Choose methods.
If you choose specific HTTP methods for this rule, they will override the defaults you chose
for all rules.
for all rules.
Match type Select Exact match or Prefix match.
Your decision here depends on your environment. It is more secure to use exact matches, but
you may need more rules. It is more convenient to use prefix matches, but there is some risk
of unintentionally exposing server resources.
you may need more rules. It is more convenient to use prefix matches, but there is some risk
of unintentionally exposing server resources.
Deployment
If you are using multiple deployments for your MRA environment, you also need to choose
which deployment uses the new rule. You won't see this field unless you have more than one
deployment.
which deployment uses the new rule. You won't see this field unless you have more than one
deployment.
Table 3 Properties of Manually Added Allow List Rules
6.
Click Create Entry to save the rule and return to the editable allow list.
7.
[Optional] Click View/Edit to change the rule.
Upload Rules to the HTTP Allow List
1.
Go to Configuration > Unified Communications > HTTP allow list > Upload rules.
2.
Browse to and select the CSV file containing your rule definitions.
.
3.
Click Upload.
The Expressway responds with a success message and displays the Editable rules page.
Setting Up the Expressway-E
This section describes the configuration steps required on the Expressway-E.
Configuring DNS and NTP Settings
Check and configure the basic system settings on Expressway:
31
Mobile and Remote Access Through Cisco Expressway Deployment Guide
Configuring Mobile and Remote Access on Expressway