https://community.cisco.com/t5/web-security/wsa-dpi-proxy/m-p/2336727#M4014 <HTML><HEAD></HEAD><BODY><P>Hi Luis,</P><P>Thank you for answer. Maybe I'm missing something but i thought that AVC is the part of DPI. So if the transparent proxy differs from DPI would it affect traffic with some possible unexpected effect?</P></BODY></HTML> Mon, 28 Oct 2013 05:08:56 GMT Ilya Geraskin 2013-10-28T05:08:56Z https://community.cisco.com/t5/web-security/wsa-dpi-proxy/m-p/2336725#M4012 <P>Hi,</P><P>Correct me if I'm wrong. As I understand transparent proxy != DPI because transparent proxy have some functional limitations and dpi haven't. So the WSA's web filters and rules are based on transparent proxy that will affect some type of traffic or not?</P> Thu, 24 Oct 2013 07:16:53 GMT https://community.cisco.com/t5/web-security/wsa-dpi-proxy/m-p/2336725#M4012 Ilya Geraskin 2013-10-24T07:16:53Z https://community.cisco.com/t5/web-security/wsa-dpi-proxy/m-p/2336726#M4013 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>Deep Packet Inspection will be more likely what a FW does; it does protocol enforcement; check if the traffic is compliante with the RFC and so on.. </P><P></P><P>The WSA can act as Explicit proxy (change the proxy settings on the browser) or transparent proxy that will be redirect the traffic through WCCP so there are no settings on the client itself so the user won't noticed that the HTTP/HTTPS/FTP is been monitored until it tries to access a malicious site. </P><P></P><P>We can't compare DPI with transparent proxy; this are two different concepts </P><P></P><P>HTH</P><P></P><P>Luis Silva <BR /> <BR />"If you need PDI (Planning, Design, Implement) assistance feel free to reach us" <BR /> <BR /><A class="jive-link-external-small" href="http://www.cisco.com/web/partners/tools/pdihd.html">http://www.cisco.com/web/partners/tools/pdihd.html</A></P></BODY></HTML> Fri, 25 Oct 2013 19:57:54 GMT https://community.cisco.com/t5/web-security/wsa-dpi-proxy/m-p/2336726#M4013 Luis Silva Benavides 2013-10-25T19:57:54Z https://community.cisco.com/t5/web-security/wsa-dpi-proxy/m-p/2336727#M4014 <HTML><HEAD></HEAD><BODY><P>Hi Luis,</P><P>Thank you for answer. Maybe I'm missing something but i thought that AVC is the part of DPI. So if the transparent proxy differs from DPI would it affect traffic with some possible unexpected effect?</P></BODY></HTML> Mon, 28 Oct 2013 05:08:56 GMT https://community.cisco.com/t5/web-security/wsa-dpi-proxy/m-p/2336727#M4014 Ilya Geraskin 2013-10-28T05:08:56Z https://community.cisco.com/t5/web-security/wsa-dpi-proxy/m-p/2336728#M4015 <HTML><HEAD></HEAD><BODY><TABLE border="0" cellpadding="0" cellspacing="0" style="width: 367px;"><TBODY><TR style="height: 15.0pt;"><TD height="20" style="height: 15.0pt; width: 275pt;" width="367">I've&nbsp;&nbsp; been able to bypass any blocked websites using thisproxy&nbsp;&nbsp; freely <A href="https://www.iwasel.com/en/">https://www.iwasel.com/en/</A>. It is the best way to open blocked&nbsp;&nbsp; websites everywhere.</TD></TR></TBODY></TABLE></BODY></HTML> Fri, 22 Nov 2013 18:28:55 GMT https://community.cisco.com/t5/web-security/wsa-dpi-proxy/m-p/2336728#M4015 dinaafifi 2013-11-22T18:28:55Z https://community.cisco.com/t5/web-security/wsa-dpi-proxy/m-p/2336729#M4016 <HTML><HEAD></HEAD><BODY><P><SPAN>If https decryption is working then </SPAN><A class="jive-link-external-small" href="https://www.iwasel.com/en/">https://www.iwasel.com/en/</A><SPAN> can be blocked preventing the proxy avoidance.</SPAN></P></BODY></HTML> Tue, 26 Nov 2013 15:43:11 GMT https://community.cisco.com/t5/web-security/wsa-dpi-proxy/m-p/2336729#M4016 Tom Foucha 2013-11-26T15:43:11Z