Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
386
Views
0
Helpful
2
Replies

Allowed external access to website only from a certain IP - secure?

whiteford
Level 1
Level 1

‎07-25-2008 12:03 AM - edited ‎03-11-2019 06:19 AM

Hi,

I have an internal website that I need to give a remote company access to only. I created the NAT and created an ACE to only allow their external facing IP access to the website. I'm not using port 80 either just a random port.

Now my question is can the traffic between my ASA and this external company be "sniffed" and read? I'm not using SSl or a VPN (as they don't have the IT resources to do this)?

Labels:
0 Helpful
2 Replies 2

dhananjoy chowdhury
Level 5
Level 5

‎07-25-2008 12:51 AM

Hi,

yes, there is possibility of the traffic getting sniffed and read. Normal HTTP is plain text.

Now a more secure way is to encrypt traffic via SSL, without any changes on the remote side.

- Either configure SSL Web VPN on your ASA.

- Or Configure your internal WEB server to listen to SSL only.

0 Helpful

whiteford
Level 1
Level 1
In response to dhananjoy chowdhury

‎07-25-2008 02:52 AM

Thanks, ontop of changing ports from 80 to 443 I think I need to buy an SSL certificate?

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card