Router(config)#class-map match-any anti-redcode Router(config-cmap)#match protocol http url "*default.ida*" Router(config-cmap)#match protocol http url "*cmd.exe*" Router(config-cmap)#match protocol http url "*root.exe*"
outer(config)#policy-map drop-redcode
Router(config-pmap)#class anti-redcode
Router(config)#interface serial 0/0 (连接外网的接口)
Router(config-if)#service-policy input drop-redcode