If I have ASA's in remote locations with site to site tunnels to the home office where the websense is, can I have the remote ASA make calls to websense like a router can? If so, how do I force the source address from the remote ASA so it is an encrypted vpn packet.
I would consider having an onsite server act as a local Filtering service agent.
With Websense you can install distributed filter agents and have them controlled from the same policy server. This allows the websense filtered traffic to quickly be checked against the local filter agent server.
Alternately it may be possible to configure the remote firewall to directly send the requests to the Websense server through the VPN.
url-server (outside) host 18.104.22.168
Your VPN access-lists would need to encrypt traffic between your outside interface IP number and your internal network at the remote location.
access-list vpn-remote-to-central permit ip host 22.214.171.124 126.96.36.199 255.255.255.0
(reverse of that on the central site of course, and add the traffic to your nat 0 access-lists)
A long time ago I did something like this, havent had to in a while though, so I'd test it before putting into production.
Cisco Umbrella is one of the most interesting cisco security solutions. Basically, Umbrella is a cloud based solution and a big DNS Services It all starts with DNS and Precedes file execution and IP connection. Which means that Umbrella blocks malicious ...
Are you responsible for risk management, compliance management and auditing of a network?
If so, we’d like to speak with you to learn your current processes of enforcing compliance and managing risk to help us develop services that will ...
Once you've expanded Cisco Secure Endpoint connector deployment to about 50% of your licensed count (check out this article that shows you how to do that), it's time to put those connectors to action i.e. convert them to Protect from Audit mode for vari...
Hello! I’m Betsy, UX Researcher, on the Cisco+ Secure Connect Now team. Nice to meet you all .We have a short survey to learn about your Zero Trust Network Access (ZTNA) journey. Whether you have, plan to, or have not implemented a ...