https://community.cisco.com/t5/network-security/asa-cut-through-authentication-proxy-https-concurrent/m-p/1995047#M401468 <HTML><HEAD></HEAD><BODY><P>The ASA allows 16 concurrent HTTPS-Authentication-sessions. This is documented in the config-guide:</P><P><A class="jive-link-external-small" href="http://www.cisco.com/en/US/docs/security/asa/asa84/configuration/guide/access_fwaaa.html#wp1150372" rel="nofollow">http://www.cisco.com/en/US/docs/security/asa/asa84/configuration/guide/access_fwaaa.html#wp1150372</A></P><P></P><P>For the authenticated traffic the "normal" connection-limits apply as they are processed the same way as any other traffic.</P><P></P><P></P><P>If you want to authenticate your internal Users you should think about the Identity-Firewall-feature:</P><P><A class="jive-link-external-small" href="http://www.cisco.com/en/US/docs/security/asa/asa84/configuration/guide/access_idfw.html">http://www.cisco.com/en/US/docs/security/asa/asa84/configuration/guide/access_idfw.html</A></P></BODY></HTML> Mon, 30 Jul 2012 13:39:20 GMT Karsten Iwen 2012-07-30T13:39:20Z https://community.cisco.com/t5/network-security/asa-cut-through-authentication-proxy-https-concurrent/m-p/1995044#M401465 <P>Hi</P><P></P><P></P><P>What are the limitations on the max number of concurrent HTTPS connections when using Auth Proxy for HTTPS traffic on a Cisco ASA 5520.</P><P></P><P>1) What is the max number of concurrent Authentications that the ASA can perform (HTTPS)?</P><P>2) Once Authenticated. What is the max number of concurrent HTTPS Authenticated connections to the back end HTTPS server. </P><P></P><P></P><P>Regards</P><P>Byron</P> Mon, 11 Mar 2019 23:36:05 GMT https://community.cisco.com/t5/network-security/asa-cut-through-authentication-proxy-https-concurrent/m-p/1995044#M401465 byron.momsen 2019-03-11T23:36:05Z https://community.cisco.com/t5/network-security/asa-cut-through-authentication-proxy-https-concurrent/m-p/1995045#M401466 <HTML><HEAD></HEAD><BODY><P>Hi Byron,</P><P></P><P>I guess it should be based on the concurrent VPN sessions for your Webvpn/SSL vpn. If so then 750 is the maximum session allowed through ASA 5520. Because the valid https authentication for your vpn connectivity will be considered as one session. Your second question depends on the HTTPS server which you have i suppose</P><P></P><P>Please do rate if the given information helps.</P><P></P><P>By</P><P></P><P>Karthik</P></BODY></HTML> Mon, 30 Jul 2012 13:21:02 GMT https://community.cisco.com/t5/network-security/asa-cut-through-authentication-proxy-https-concurrent/m-p/1995045#M401466 nkarthikeyan 2012-07-30T13:21:02Z https://community.cisco.com/t5/network-security/asa-cut-through-authentication-proxy-https-concurrent/m-p/1995046#M401467 <HTML><HEAD></HEAD><BODY><P>Hi Byron,</P><P></P><P>Or you mean to say whenevr you hit the firewall with any traffic if that matches it will direct you to a proxy authentication of https which you are asking a count how many cut through proxy authentication for the same???</P><P></P><P></P><P>By</P><P></P><P>Karthik</P></BODY></HTML> Mon, 30 Jul 2012 13:27:00 GMT https://community.cisco.com/t5/network-security/asa-cut-through-authentication-proxy-https-concurrent/m-p/1995046#M401467 nkarthikeyan 2012-07-30T13:27:00Z https://community.cisco.com/t5/network-security/asa-cut-through-authentication-proxy-https-concurrent/m-p/1995047#M401468 <HTML><HEAD></HEAD><BODY><P>The ASA allows 16 concurrent HTTPS-Authentication-sessions. This is documented in the config-guide:</P><P><A class="jive-link-external-small" href="http://www.cisco.com/en/US/docs/security/asa/asa84/configuration/guide/access_fwaaa.html#wp1150372" rel="nofollow">http://www.cisco.com/en/US/docs/security/asa/asa84/configuration/guide/access_fwaaa.html#wp1150372</A></P><P></P><P>For the authenticated traffic the "normal" connection-limits apply as they are processed the same way as any other traffic.</P><P></P><P></P><P>If you want to authenticate your internal Users you should think about the Identity-Firewall-feature:</P><P><A class="jive-link-external-small" href="http://www.cisco.com/en/US/docs/security/asa/asa84/configuration/guide/access_idfw.html">http://www.cisco.com/en/US/docs/security/asa/asa84/configuration/guide/access_idfw.html</A></P></BODY></HTML> Mon, 30 Jul 2012 13:39:20 GMT https://community.cisco.com/t5/network-security/asa-cut-through-authentication-proxy-https-concurrent/m-p/1995047#M401468 Karsten Iwen 2012-07-30T13:39:20Z