https://community.cisco.com/t5/network-security/aaa-authentication-on-asa-5500/m-p/2382995#M310011 <HTML><HEAD></HEAD><BODY><P>Hello Jimmy,</P><P></P><P>When you talk about traffic going through your firewall are u referring to Cut-through Proxy??</P><P></P><P>If U use Cut-Through Proxy u will get a promtp for traffic such as telnet, HTTP,HTTPS and FTP.</P><P></P><P>If u want to authenticate other traffic u should use virtual-telnet, virtual HTTP or HTTP redirect.</P><P></P><P>Here are some blogs posts on my website talking about this:</P><P><A class="jive-link-external-small" href="http://www.laguiadelnetworking.com/asa-http-redirect/">http://www.laguiadelnetworking.com/asa-http-redirect/</A></P><P><A class="jive-link-external-small" href="http://www.laguiadelnetworking.com/asa-virtual-http-and-virtual-telnet/">http://www.laguiadelnetworking.com/asa-virtual-http-and-virtual-telnet/</A></P><P></P><P></P><P>Rate all of the helpful posts!!! <BR /> <BR />Regards, <BR /> <BR />Jcarvaja <BR /> <BR /><SPAN>Follow me on </SPAN><A class="jive-link-external-small" href="http://laguiadelnetworking.com">http://laguiadelnetworking.com</A></P></BODY></HTML> Wed, 30 Oct 2013 14:15:39 GMT Julio Carvajal 2013-10-30T14:15:39Z https://community.cisco.com/t5/network-security/aaa-authentication-on-asa-5500/m-p/2382994#M310010 <P>&nbsp; I set up AAA authentication for traffic going through my firewall.&nbsp;&nbsp; That causes the PINGs to be denied.&nbsp;&nbsp; I assume that is by design.&nbsp;&nbsp; What protocols would cause a prompt to display so the originator could traverse the FW?&nbsp;&nbsp; I'm not sure how AAA functions in this regard.</P><P>Thanks.&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </P> Tue, 12 Mar 2019 02:58:03 GMT https://community.cisco.com/t5/network-security/aaa-authentication-on-asa-5500/m-p/2382994#M310010 jimmyc_2 2019-03-12T02:58:03Z https://community.cisco.com/t5/network-security/aaa-authentication-on-asa-5500/m-p/2382995#M310011 <HTML><HEAD></HEAD><BODY><P>Hello Jimmy,</P><P></P><P>When you talk about traffic going through your firewall are u referring to Cut-through Proxy??</P><P></P><P>If U use Cut-Through Proxy u will get a promtp for traffic such as telnet, HTTP,HTTPS and FTP.</P><P></P><P>If u want to authenticate other traffic u should use virtual-telnet, virtual HTTP or HTTP redirect.</P><P></P><P>Here are some blogs posts on my website talking about this:</P><P><A class="jive-link-external-small" href="http://www.laguiadelnetworking.com/asa-http-redirect/">http://www.laguiadelnetworking.com/asa-http-redirect/</A></P><P><A class="jive-link-external-small" href="http://www.laguiadelnetworking.com/asa-virtual-http-and-virtual-telnet/">http://www.laguiadelnetworking.com/asa-virtual-http-and-virtual-telnet/</A></P><P></P><P></P><P>Rate all of the helpful posts!!! <BR /> <BR />Regards, <BR /> <BR />Jcarvaja <BR /> <BR /><SPAN>Follow me on </SPAN><A class="jive-link-external-small" href="http://laguiadelnetworking.com">http://laguiadelnetworking.com</A></P></BODY></HTML> Wed, 30 Oct 2013 14:15:39 GMT https://community.cisco.com/t5/network-security/aaa-authentication-on-asa-5500/m-p/2382995#M310011 Julio Carvajal 2013-10-30T14:15:39Z