https://community.cisco.com/t5/network-security/cisco-asa-aip-ssm-url-https-filtering/m-p/2125504#M394900 <P><SPAN>Can cisco block/filter https url such a </SPAN><A class="jive-link-external-small" href="https://www.cisco.com" target="_blank">https://www.cisco.com</A><SPAN> with inspect map or AP-SSM?</SPAN></P><P>From Whaat i know is asa need third party like websense, to block. https url.</P><P></P><P>Thx</P> Tue, 12 Mar 2019 00:30:25 GMT superlubis 2019-03-12T00:30:25Z https://community.cisco.com/t5/network-security/cisco-asa-aip-ssm-url-https-filtering/m-p/2125504#M394900 <P><SPAN>Can cisco block/filter https url such a </SPAN><A class="jive-link-external-small" href="https://www.cisco.com" target="_blank">https://www.cisco.com</A><SPAN> with inspect map or AP-SSM?</SPAN></P><P>From Whaat i know is asa need third party like websense, to block. https url.</P><P></P><P>Thx</P> Tue, 12 Mar 2019 00:30:25 GMT https://community.cisco.com/t5/network-security/cisco-asa-aip-ssm-url-https-filtering/m-p/2125504#M394900 superlubis 2019-03-12T00:30:25Z https://community.cisco.com/t5/network-security/cisco-asa-aip-ssm-url-https-filtering/m-p/2125505#M394901 <HTML><HEAD></HEAD><BODY><P>Hello,</P><P></P><P>It can be done locally using the MPF ( with the use of regex and a layer 7 http inspection policy)</P><P></P><P>The AIP-SSM provides security to your network by using different mechanism like signature checks, global correlation,&nbsp; anomaly detection,etc.</P><P></P><P>Now what you might want to use is the CSC-SSM module that provides you web filtering ( trend-micro)</P><P></P><P>Finally an external websense or any other kind of http url filtering device will do it.</P><P></P><P></P><P>Regards,</P></BODY></HTML> Fri, 30 Nov 2012 01:12:53 GMT https://community.cisco.com/t5/network-security/cisco-asa-aip-ssm-url-https-filtering/m-p/2125505#M394901 Julio Carvajal 2012-11-30T01:12:53Z https://community.cisco.com/t5/network-security/cisco-asa-aip-ssm-url-https-filtering/m-p/2125506#M394902 <HTML><HEAD></HEAD><BODY><P>if user browse https sites thats mean he/she use port https right, i dont see https inspection in cisco asa. I only see http, ftp, dns, etc. so we cant use MPF because its only support http. correct me if im wrong </P></BODY></HTML> Fri, 30 Nov 2012 01:24:51 GMT https://community.cisco.com/t5/network-security/cisco-asa-aip-ssm-url-https-filtering/m-p/2125506#M394902 superlubis 2012-11-30T01:24:51Z https://community.cisco.com/t5/network-security/cisco-asa-aip-ssm-url-https-filtering/m-p/2125507#M394903 <HTML><HEAD></HEAD><BODY><P>Hello Ibrahim, You will need to use the CSC-SSM module on the ASA or an external server for filter HTTPS..</P><P></P><P>Exactly</P><P></P><P>Regards</P></BODY></HTML> Fri, 30 Nov 2012 03:33:52 GMT https://community.cisco.com/t5/network-security/cisco-asa-aip-ssm-url-https-filtering/m-p/2125507#M394903 Julio Carvajal 2012-11-30T03:33:52Z