https://community.cisco.com/t5/web-security/issue-explicit-mode-session-cookie-surrogate/m-p/1306038#M867 <HTML><HEAD></HEAD><BODY><P>Yes, we found the issue too late to include it in the 6.0.1 release notes, unfortunately.</P></BODY></HTML> Wed, 23 Sep 2009 04:47:36 GMT David Paschich 2009-09-23T04:47:36Z https://community.cisco.com/t5/web-security/issue-explicit-mode-session-cookie-surrogate/m-p/1306035#M864 <P>Hi all,<BR /><BR />Consider next scenario:<BR /> - deployment mode <B>explicit forward</B><BR /> - proxy port <B>not</B> 80<BR /> - authentication surrogate is <B>session cookie</B><BR /><BR />This should work like this:<BR />Client sends request, WSA replies 307 with "Location" header that redirects to itself (WSA) with an internal path which should result in retrieving content if authorized.<BR /><BR />Problem occurs in header, "Location" directive, because it does not return configured proxy port, just hostname (eg: Location: <A href="http://proxy/internal_path/web_site)." target="_blank">http://proxy/internal_path/web_site).</A><BR /><BR />Workaround for this is to configure port 80 as proxy port as well.<BR /><BR />Tested on AsyncOS 6.0, 6.3!</P> Mon, 21 Sep 2009 22:27:21 GMT https://community.cisco.com/t5/web-security/issue-explicit-mode-session-cookie-surrogate/m-p/1306035#M864 milanuremovic 2009-09-21T22:27:21Z https://community.cisco.com/t5/web-security/issue-explicit-mode-session-cookie-surrogate/m-p/1306036#M865 <HTML><HEAD></HEAD><BODY><P>Minurc, this is a known issue; we're trying to get a fix into a maintenance release for both 6.0 and 6.3. Make sure you have a ticket open with support for this so you'll get notified when the fix is available!</P></BODY></HTML> Tue, 22 Sep 2009 23:08:36 GMT https://community.cisco.com/t5/web-security/issue-explicit-mode-session-cookie-surrogate/m-p/1306036#M865 David Paschich 2009-09-22T23:08:36Z https://community.cisco.com/t5/web-security/issue-explicit-mode-session-cookie-surrogate/m-p/1306037#M866 <HTML><HEAD></HEAD><BODY><P>Ok, didn't know that fact. Just came across while testing appliance, and did read known issues for 6.0 and 6.3, but didn't find one explaining it <span class="lia-unicode-emoji" title=":slightly_smiling_face:">🙂</span><BR /><BR />But it's good to know that it's in progress. Thanks.</P></BODY></HTML> Tue, 22 Sep 2009 23:18:35 GMT https://community.cisco.com/t5/web-security/issue-explicit-mode-session-cookie-surrogate/m-p/1306037#M866 milanuremovic 2009-09-22T23:18:35Z https://community.cisco.com/t5/web-security/issue-explicit-mode-session-cookie-surrogate/m-p/1306038#M867 <HTML><HEAD></HEAD><BODY><P>Yes, we found the issue too late to include it in the 6.0.1 release notes, unfortunately.</P></BODY></HTML> Wed, 23 Sep 2009 04:47:36 GMT https://community.cisco.com/t5/web-security/issue-explicit-mode-session-cookie-surrogate/m-p/1306038#M867 David Paschich 2009-09-23T04:47:36Z