Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1533
Views
0
Helpful
4
Replies

ASA and Websense

Go to solution
Brian O'Flynn
Level 1
Level 1

‎03-08-2011 09:09 AM - edited ‎03-11-2019 01:02 PM

Hi, I have recently deployed a wireless solution behind a cisco ASA firewall and have now been asked to introduce a web filtering product to compliment the solution.  I would like to take advantage of the URL redirect feature of the ASA to send requests to a WebSense server.  I have not used WebSense however and have a few questions that I am hoping someone can help:

1) When you redirect URL requests to the WebSense, can you enforce that an AUP gets displayed once a week which must be agreed to before proceeding?

2) I will have some Guest Users and some AD Users, is it possible to enforce one policy for the guest users based on IP Subnet and a second policy for AD Users based on userid?

Cheers

Brian

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
trippi
Level 1
Level 1

‎03-08-2011 07:42 PM

The first one I am not sure about, that is a question for Websense.

The second question, yes, that is possible in Websense configuration also.

View solution in original post

0 Helpful
4 Replies 4

Go to solution
trippi
Level 1
Level 1

‎03-08-2011 07:42 PM

The first one I am not sure about, that is a question for Websense.

The second question, yes, that is possible in Websense configuration also.

0 Helpful

Go to solution
Brian O'Flynn
Level 1
Level 1
In response to trippi

‎03-09-2011 01:48 AM

Thanks for the feedback Trippi, I will redirect the first question to websense.

Cheers

Brian

0 Helpful

Go to solution
Brian O'Flynn
Level 1
Level 1
In response to Brian O'Flynn

‎03-10-2011 06:45 AM

Just a follow on question from that, is there any reason to choose WebSense over SmartFilter?  Don't really see much difference between them.

0 Helpful

Go to solution
trippi
Level 1
Level 1
In response to Brian O'Flynn

‎03-10-2011 08:45 AM

It depends on what your goal is.

If it is to provide basic URL filtering, probably not.

You can even use Squid, which is free to provide a limited, whitelisted only filter.

If you are going for Security, yes, there is a difference.

The majority being in the back end URL fitlering database, the ability to decrypt SSL, real time classification, AV scanning, etc.

If you use Websense and the ASA integration you won't have the ability to decrypt SSL.

If you use the Websense Securtiy Gateway you can, along with the other major competitors.

You can use WCCP to accomplish this transparently in your network device (core switch, firewall, etc)

If you go the latter route, budget permitting,  I suggest looking at all the vendors in the top right corner of the Gartner Magic Quadrant

Attached is the latest magic quadrant for Secure Web Gateway.

Preview file
445 KB
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card