https://community.cisco.com/t5/network-security/url-filtering-on-asa-5520/m-p/946016#M941710 <HTML><HEAD></HEAD><BODY><P>Yeah that's right</P></BODY></HTML> Wed, 27 Feb 2008 20:34:48 GMT whiteford 2008-02-27T20:34:48Z https://community.cisco.com/t5/network-security/url-filtering-on-asa-5520/m-p/946014#M941708 <P>Hi, I am currently filtering users web sites internally via a product called Surf Control (now owed my Websense). The thing is I have now configured the ASA to accept VPN connections from users. They can get access to the internet but it is not monitored. Currently the inside port of the ASA plugs into a Cisco 3750 vlan switch where there is a surfcontrol server too and port mirroring. I think the VPN users bypass this and go through the outside interface instead so they are not filtered.</P><P></P><P>What do other network guys do to block websites?</P><P></P><P>thanks </P> Mon, 11 Mar 2019 12:09:43 GMT https://community.cisco.com/t5/network-security/url-filtering-on-asa-5520/m-p/946014#M941708 whiteford 2019-03-11T12:09:43Z https://community.cisco.com/t5/network-security/url-filtering-on-asa-5520/m-p/946015#M941709 <HTML><HEAD></HEAD><BODY><P>so the URL filtering works normally as it should for local LAN users. It's just for remote access vpn users that it's not working for?</P></BODY></HTML> Wed, 27 Feb 2008 20:26:25 GMT https://community.cisco.com/t5/network-security/url-filtering-on-asa-5520/m-p/946015#M941709 srue 2008-02-27T20:26:25Z https://community.cisco.com/t5/network-security/url-filtering-on-asa-5520/m-p/946016#M941710 <HTML><HEAD></HEAD><BODY><P>Yeah that's right</P></BODY></HTML> Wed, 27 Feb 2008 20:34:48 GMT https://community.cisco.com/t5/network-security/url-filtering-on-asa-5520/m-p/946016#M941710 whiteford 2008-02-27T20:34:48Z https://community.cisco.com/t5/network-security/url-filtering-on-asa-5520/m-p/946017#M941711 <HTML><HEAD></HEAD><BODY><P>Any more anwers on this? I am having the same issue.</P></BODY></HTML> Mon, 16 Jun 2008 18:30:04 GMT https://community.cisco.com/t5/network-security/url-filtering-on-asa-5520/m-p/946017#M941711 adcorbett_2 2008-06-16T18:30:04Z https://community.cisco.com/t5/network-security/url-filtering-on-asa-5520/m-p/946018#M941712 <HTML><HEAD></HEAD><BODY><P>Yup, I think vpn users redirect from the outside interface to the internet.</P><P></P></BODY></HTML> Tue, 17 Jun 2008 04:16:52 GMT https://community.cisco.com/t5/network-security/url-filtering-on-asa-5520/m-p/946018#M941712 nomair_83 2008-06-17T04:16:52Z https://community.cisco.com/t5/network-security/url-filtering-on-asa-5520/m-p/946019#M941713 <HTML><HEAD></HEAD><BODY><P>Hi there</P><P></P><P>First of all, you need to make sure your users are using the proxy in there settings.</P><P></P><P>Then, all you need to do is a static nat from your proxy server to a public address from your pool. Then create a rule just to allow ftp,ssl,and http from your proxy server only.</P><P></P><P>I would also make sure that you have not enabled traffic between 2 or more hosts connected to the same interface, this may be what it is.</P><P></P><P>cheers</P><P></P><P>Carl</P></BODY></HTML> Thu, 04 Sep 2008 12:33:15 GMT https://community.cisco.com/t5/network-security/url-filtering-on-asa-5520/m-p/946019#M941713 carl_townshend 2008-09-04T12:33:15Z