Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1279
Views
0
Helpful
4
Replies

ASA Monitoring

Go to solution
samirshaikh52
Level 2
Level 2

‎11-13-2010 11:32 PM - edited ‎03-11-2019 12:09 PM

Hi Community,

Employees in my company are going through Microsoft Proxy Server. Furthemore,  I have got an Cisco ASA 5540 as an edge firewall.

Here, my question is that How can i monitor through ASA that who are users bypassing my proxy server ?

Can someone help me in this ?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jennifer Halim
Cisco Employee
Cisco Employee
In response to samirshaikh52

‎11-14-2010 12:02 AM

If you are not allowing users to access the internet directly, then there is no way the ASA can allow the access through unless there are access-list entries which are allowing the specific access.

There is no specific feature to monitor web traffic in particular on the ASA firewall.

You can share the access-list that you have configured and I can double check to see if other web traffic but from the proxy server is allowed through. Otherwise, unfortunately there is no specific monitoring for web traffic on the ASA.

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Jennifer Halim
Cisco Employee
Cisco Employee

‎11-13-2010 11:37 PM

You can configure access-list to only allow the Microsoft Proxy server to access the internet and block everyone else from browsing the internet.

That way, you only allow web traffic from Microsoft Proxy server but not from all other users.

0 Helpful

Go to solution
samirshaikh52
Level 2
Level 2
In response to Jennifer Halim

‎11-13-2010 11:53 PM

Hi Jennifer,

Thank you for your quick reply

I would let you know i have already ACL in place as you said

Allowing Proxy Server and and at last one statement deny all traffice internal traffic.

But I just want to double make sure that no one bypass by proxy server.

Is there any asa monitoring tool ?

Thanks

0 Helpful

Go to solution
Jennifer Halim
Cisco Employee
Cisco Employee
In response to samirshaikh52

‎11-14-2010 12:02 AM

If you are not allowing users to access the internet directly, then there is no way the ASA can allow the access through unless there are access-list entries which are allowing the specific access.

There is no specific feature to monitor web traffic in particular on the ASA firewall.

You can share the access-list that you have configured and I can double check to see if other web traffic but from the proxy server is allowed through. Otherwise, unfortunately there is no specific monitoring for web traffic on the ASA.

0 Helpful

Go to solution
samirshaikh52
Level 2
Level 2
In response to Jennifer Halim

‎11-14-2010 12:05 AM

Thank You Jennifer for that clarification I really appreciate.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card