cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
428
Views
0
Helpful
2
Replies

ASA 5545 interfering with HTTPS Traffic

brownmattc
Level 1
Level 1

Hello,

I am having a strange issue with HTTPS traffic that I think has to do with our ASA.  The basics is that HTTPS sessions around the web are extremely slow and sometimes time out.  This happens when browsing the web through Chrome or Internet Explorer but this issue is also affecting our remote VPN phones that create a SSL tunnel into our DMZ.   The phones will work for two - three minutes then the SSL connection is reset.  So I have two different interfaces (Internal and DMZ) and I am seeing the same issue with services behind both of them which is what leads me to believe that the ASA is doing something to HTTPS traffic.  What is seems to me is that the ASA is somehow inspecting or slowing down HTTPS traffic though I cannot for the life of me find any inspection policies that would apply.

 

This ASA has a CX module but I have not configured it to do anything.  When I login to the CX module it shows that no information, data, policies or otherwise.  So I don't think it is the CX module.

 

Any thoughts on how I can figure out what is going on?  Does anyone know if there are default inspection polices on HTTPS when not using the CX module?  Could there be some other service running on the ASA that could be causing this?

Thanks,

Matt

 

 

2 Replies 2

Vibhor Amrodia
Cisco Employee
Cisco Employee