topic Re: inspect HTTPS in Network Security

inspect HTTPS

snickered — Sun, 10 Mar 2019 11:46:36 GMT

I'm curious if there is a way to stop tunneling applications out HTTPS with ASA 5500. I know everything is encrypted but is there a way to at least inspect the traffic to make sure it complies with RFC 2818? Perhaps there's another way to provide some security?

Re: inspect HTTPS

dhananjoy chowdhury — Wed, 30 Sep 2009 14:37:27 GMT

A quick feasible option would be to use WCCP on the ASA and forward all HTTPS traffic to a Squid proxy server and then use the tool ufdbGuard (http://www.urlfilterdb.com/download/software/index.shtml) along with Squid to block traffic.

You can create specific ACL's to redirect traffic with WCCP on ASa.

Re: inspect HTTPS

m-mostafa — Sun, 14 Apr 2013 09:11:46 GMT

is there another tool to run on windows with squid proxy