https://community.cisco.com/t5/network-security/asa-as-proxy-sever/m-p/2158507#M359180 <HTML><HEAD></HEAD><BODY><P>can you please explain me how it will work with help of scansafe cloud and can you share any configuration document for the same</P></BODY></HTML> Mon, 01 Apr 2013 06:24:37 GMT digvijay.p2013 2013-04-01T06:24:37Z https://community.cisco.com/t5/network-security/asa-as-proxy-sever/m-p/2158505#M359175 <P>Hi </P><P>Can ASA act as a proxy server?</P><P>I dont want to redirect the traffic to third party proxy but ASA should be able to do this.</P><P>Please share any technical document for configuration.</P><P></P><P>Regards,</P><P>Digvijay</P> Tue, 12 Mar 2019 01:21:57 GMT https://community.cisco.com/t5/network-security/asa-as-proxy-sever/m-p/2158505#M359175 digvijay.p2013 2019-03-12T01:21:57Z https://community.cisco.com/t5/network-security/asa-as-proxy-sever/m-p/2158506#M359177 <HTML><HEAD></HEAD><BODY><P><A _jive_internal="true" href="https://community.cisco.com/thread/2177044">https://supportforums.cisco.com/thread/2177044</A></P><P></P><P>Read that and if you still have any questions you can let us know <SPAN __jive_emoticon_name="grin" __jive_macro_name="emoticon" class="jive_macro jive_emote" src="https://community.cisco.com/4.5.4/images/emoticons/grin.gif"></SPAN></P><P></P><P>Hope that I could help</P></BODY></HTML> Mon, 01 Apr 2013 06:14:52 GMT https://community.cisco.com/t5/network-security/asa-as-proxy-sever/m-p/2158506#M359177 Julio Carvajal 2013-04-01T06:14:52Z https://community.cisco.com/t5/network-security/asa-as-proxy-sever/m-p/2158507#M359180 <HTML><HEAD></HEAD><BODY><P>can you please explain me how it will work with help of scansafe cloud and can you share any configuration document for the same</P></BODY></HTML> Mon, 01 Apr 2013 06:24:37 GMT https://community.cisco.com/t5/network-security/asa-as-proxy-sever/m-p/2158507#M359180 digvijay.p2013 2013-04-01T06:24:37Z https://community.cisco.com/t5/network-security/asa-as-proxy-sever/m-p/2158508#M359184 <HTML><HEAD></HEAD><BODY><P>Hello,</P><P></P><P>Basically all traffic will be transparently send to the ScanSafe cluster so the traffic can be inspected and then based on some rules it will be permited or denied,</P><P></P><P>The users will not know they are using a proxy <SPAN __jive_emoticon_name="grin" __jive_macro_name="emoticon" class="jive_macro jive_emote" src="https://community.cisco.com/4.5.4/images/emoticons/grin.gif"></SPAN></P><P></P><P>Read the following blog for extra information</P><P></P><P><A href="http://nat0.net/cisco-asa-v9-0-software-released/">http://nat0.net/cisco-asa-v9-0-software-released/</A></P></BODY></HTML> Mon, 01 Apr 2013 17:34:25 GMT https://community.cisco.com/t5/network-security/asa-as-proxy-sever/m-p/2158508#M359184 Julio Carvajal 2013-04-01T17:34:25Z https://community.cisco.com/t5/network-security/asa-as-proxy-sever/m-p/2158509#M359188 <HTML><HEAD></HEAD><BODY><P>You do NOT need version 9.x to do this task.&nbsp; Version 8.3 or 8.4 will do the trick.&nbsp; Search google for the paper title "</P><P>Implementing ScanSafe Web Security for Public Wi-Fi Hotspots Using a Cisco ASA Firewall" and will show you to to integrate with Scansafe.&nbsp; Basically the ASA will function just like proxy </P><P></P><P><A class="jive-link-external-small" href="http://www.google.com/url?q=http://tr.comstor.com/documents%3FdocumentId%3D40684%26filename%3DASA_WiFi_Config.pdf&amp;sa=U&amp;ei=hEJaUZCtKKTL0QHthoGICQ&amp;ved=0CB8QFjAC&amp;usg=AFQjCNFn7ga7qsbdyz-_Yn7mb9RrJo_ZBA">http://www.google.com/url?q=http://tr.comstor.com/documents%3FdocumentId%3D40684%26filename%3DASA_WiFi_Config.pdf&amp;sa=U&amp;ei=hEJaUZCtKKTL0QHthoGICQ&amp;ved=0CB8QFjAC&amp;usg=AFQjCNFn7ga7qsbdyz-_Yn7mb9RrJo_ZBA</A></P><P></P><P>the downside is that if someone setup a gambling web site using https (aka SSL), I don't know if scansafe can stop that because it is encrypted.&nbsp; Scansafe might be able to do URL filtering but not content security because the payload is encrypted.</P></BODY></HTML> Tue, 02 Apr 2013 02:37:29 GMT https://community.cisco.com/t5/network-security/asa-as-proxy-sever/m-p/2158509#M359188 david.tran 2013-04-02T02:37:29Z https://community.cisco.com/t5/network-security/asa-as-proxy-sever/m-p/2158510#M359189 <HTML><HEAD></HEAD><BODY><P>I never said 9.0, I just provided a link with the configuration that makes reference to 9.0...</P><P></P><P>It makes reference to 9.0 because we changed the entire configuration on that version (9.0)&nbsp; as you will not need to us a Destination NAT to redirect the traffic to the Scansafe Cluster,</P><P></P><P>We highly recommend to use this feature with the easy new sintax as that is the easiest way to configure it and future versions will only support that one,</P><P></P><P>If we are talking about links, here is the one <SPAN __jive_emoticon_name="grin" __jive_macro_name="emoticon" class="jive_macro jive_emote" src="https://community.cisco.com/4.5.4/images/emoticons/grin.gif"></SPAN> </P><P></P><P><A _jive_internal="true" href="https://community.cisco.com/docs/DOC-29676">https://supportforums.cisco.com/docs/DOC-29676</A></P><P></P><P></P><P>And scansafe <STRONG>can</STRONG> handle SSL</P><P></P><P>Regards</P></BODY></HTML> Tue, 02 Apr 2013 04:12:22 GMT https://community.cisco.com/t5/network-security/asa-as-proxy-sever/m-p/2158510#M359189 Julio Carvajal 2013-04-02T04:12:22Z