https://community.cisco.com/t5/network-security/asa-non-http-connection/m-p/2781493#M174047 <P>Hello;&nbsp;</P> <P></P> <P><EM>Explanation For the CoA feature, the redirect ACL filter drops the matching non-HTTP traffic during the redirect processing</EM></P> <P></P> <P><EM>Recommended Action Validate the redirect ACL configuration on the ASA. Make sure that the correct filter is used to match the traffic to redirect and does not block the flow that is intended to be allowed through.</EM></P> <P><EM>http://www.cisco.com/c/en/us/td/docs/security/asa/syslog-guide/syslogs/logmsgs1.html#pgfId-8070351</EM></P> <P></P> <P>Seems like there is a misconfiguration in CoA. &nbsp;</P> <P></P> <P>Mike.&nbsp;</P> <P><I></I></P> <P><I></I></P> <P><I></I></P> <P></P> <P><I></I></P> Mon, 14 Dec 2015 17:44:05 GMT Maykol Rojas 2015-12-14T17:44:05Z https://community.cisco.com/t5/network-security/asa-non-http-connection/m-p/2781492#M174044 <P>Hi all,</P> <P></P> <P>We are seeing the following syslog massages when we are trying to authenticate via the ASA:</P> <P></P> <P>Non-HTTP connection from outside:10.100.100.1/51253 to inside:192.168.76.13/8905 denied by redirect filter; only HTTP connections are supported for redirection.</P> <P></P> <P>Built inbound TCP connection 5181 for outside:10.100.100.1/51253 (10.100.100.1/51253)(LOCAL\testuser) to inside:192.168.76.13/8443 (192.168.76.13/8905) (testuser)</P> <P></P> <P>Teardown TCP connection 5181 for outside:10.100.100.1/51253(LOCAL\testuser) to inside:192.168.76.13/8443 duration 0:00:00 bytes 0 Flow closed by inspection (testuser)</P> <P><SPAN style="color: black;">&nbsp;</SPAN></P> <P><SPAN style="color: black;">Is there any workaround the above mentioned issue?</SPAN></P> <P><SPAN style="color: black;"></SPAN></P> <P><SPAN style="color: black;">Thanks in advance,</SPAN></P> <P><SPAN style="color: black;"></SPAN></P> <P><SPAN style="color: black;">Dave.</SPAN></P> Wed, 13 Mar 2019 01:09:08 GMT https://community.cisco.com/t5/network-security/asa-non-http-connection/m-p/2781492#M174044 davidsonyo 2019-03-13T01:09:08Z https://community.cisco.com/t5/network-security/asa-non-http-connection/m-p/2781493#M174047 <P>Hello;&nbsp;</P> <P></P> <P><EM>Explanation For the CoA feature, the redirect ACL filter drops the matching non-HTTP traffic during the redirect processing</EM></P> <P></P> <P><EM>Recommended Action Validate the redirect ACL configuration on the ASA. Make sure that the correct filter is used to match the traffic to redirect and does not block the flow that is intended to be allowed through.</EM></P> <P><EM>http://www.cisco.com/c/en/us/td/docs/security/asa/syslog-guide/syslogs/logmsgs1.html#pgfId-8070351</EM></P> <P></P> <P>Seems like there is a misconfiguration in CoA. &nbsp;</P> <P></P> <P>Mike.&nbsp;</P> <P><I></I></P> <P><I></I></P> <P><I></I></P> <P></P> <P><I></I></P> Mon, 14 Dec 2015 17:44:05 GMT https://community.cisco.com/t5/network-security/asa-non-http-connection/m-p/2781493#M174047 Maykol Rojas 2015-12-14T17:44:05Z