Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1620
Views
0
Helpful
5
Replies

ASA 5515-X - Content Security Options?

smoothnetworks
Level 1
Level 1

‎01-20-2013 09:39 AM - edited ‎03-11-2019 05:49 PM

Our requirement with that appliance is to do URL blocking and filtering.

Ive read that this cannot be done with that appliance, see below. Are ther any other options we can consider or is it SaaS only. Would have prefered Trend Micro, but don't this is possible with this appliance.

Q. Will content security be offered on the Cisco ASA 5500-X Series?

A. At this time, content security services are not supported on the Cisco  ASA 5500-X Series appliances. However, the ASA 5500-X Series Cisco Cloud  Web Security ready. Cisco Cloud Web Security provides content security  as a cloud-based software as a service (SaaS).

http://www.cisco.com/en/US/prod/collateral/vpndevc/ps6032/ps6094/ps6120/qa_c67-700608.html

Labels:
0 Helpful
5 Replies 5

Michal Garcarz
Cisco Employee
Cisco Employee

‎01-20-2013 09:45 AM

That ASA support WCCP as a method to redirect traffic to WCCP server like Cisco WSA.

Cisco WSA has a huge capabilities regarding URL blocking and filtering - it's better (and newer) solution than CSC module (Trend Micro) inside ASA.

This solutions can be totally transparent to the users.

If you do not want to purchase WSA hardware you can buy cloud service and the your anyconnect client will pass all traffic thru web service (where specific policies could be applied with AD user granurality).

This solution is not transparent to the users because it requires Anyconnect.

The other option for a "Saas" model is to use ASA9 which has integrated service for cloud security (Cisco Cloud Web Security) and Cisco Security Intelligence Operations (SIO) - and then it's again transparent to the user.

So - there are many possible solutions depending on your needs, ASA 5515-X supports everything you might need

---

Michal

0 Helpful

buro_1986
Level 1
Level 1
In response to Michal Garcarz

‎07-18-2013 03:27 AM

Dear Michal,

In the Newer Cisco ASA5500X can we use both IPS and Content security simultaneously.

0 Helpful

Todd Everett
Cisco Employee
Cisco Employee
In response to buro_1986

‎09-09-2013 01:44 PM

Gautam,

Not today. Each of IPS and Content require a dedicated SSP today. Having both is on the short term road map

0 Helpful

ramesh rajendran
Level 1
Level 1
In response to buro_1986

‎12-07-2015 09:37 AM

Hi,

Antivirus and IPS are supported now?

thanks,

Ramesh

0 Helpful

Todd Everett
Cisco Employee
Cisco Employee
In response to ramesh rajendran

‎12-07-2015 12:35 PM

As Michal stated, you can redirect web traffic via WCCP to WSA or via ASA Cloud Connector settings to CWS for advanced web filtering, including URL categorization and one or more AV engines.

The ASA is able to perform both FirePower IPS inspection and redirection to a proxy inspection solution using 2 contexts. Effectively, making the system 2 ASAs in a row.

Make sense?

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card