Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 
cancel
Start a conversation
2312
Views
10
Helpful
4
Replies

Block Page - Asa Firepower

Go to solution
carlos.joya
Level 1
Level 1

ā€Ž10-22-2015 03:12 PM

Hi everyone,

 

Now iĀ“m working with a ASA 5506X, and Sourcefire module, by now itĀ“s working ok but i have an issue with the block page (Https response) beacuase only works with Internet Explorer and the other Browser dont, and also donĀ“t show the http response when the page is working with securty (HTTPS).

The policies of URL Filtering are working fine, the issue is that i cannot see the block page that i have customized with browsers like Mozilla or Chrome and when the page use port 443.

 

Does anyone know why that happens?

 

Thanks for read. :)

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Aastha Bhardwaj
Cisco Employee
Cisco Employee

ā€Ž10-23-2015 10:36 AM

Hi,

For Https websites we will not receive a Block message  the reason is because https contains encrypted data and Firepower module does not have the capability to decrypt the encrypted traffic. Only Hardware Firepower appliances and now Drambuie the latest release 6.0 will have that capability to decrypt SSL traffic.

Only FirePOWER Series-3 device support SSL at this time so this is expected behavior .

Regards,

Aastha

Rate if it helps!!!

View solution in original post

4 Replies 4

Go to solution
Aastha Bhardwaj
Cisco Employee
Cisco Employee

ā€Ž10-23-2015 10:36 AM

Hi,

For Https websites we will not receive a Block message  the reason is because https contains encrypted data and Firepower module does not have the capability to decrypt the encrypted traffic. Only Hardware Firepower appliances and now Drambuie the latest release 6.0 will have that capability to decrypt SSL traffic.

Only FirePOWER Series-3 device support SSL at this time so this is expected behavior .

Regards,

Aastha

Rate if it helps!!!

Go to solution
carlos.joya
Level 1
Level 1
In response to Aastha Bhardwaj

ā€Ž10-23-2015 02:10 PM

Hi,

Thanks for your reply, now the reason is clear, Do you know if sometime cisco will release an upgrade for this issue?

Regards.

0 Helpful

Go to solution
Aastha Bhardwaj
Cisco Employee
Cisco Employee
In response to carlos.joya

ā€Ž10-23-2015 02:11 PM

Hi,

 

The new release coming up 6.0 , that should support this.

 

Regards,

Aastha

Rate if that helps!!!

Go to solution
Dennis Perto
Level 5
Level 5
In response to Aastha Bhardwaj

ā€Ž03-09-2016 03:42 AM

This is not supported in version 6.0. 

The manual states that:

Response pages do not appear when web traffic is blocked:

  • by a Security Intelligence blacklist, and the session was originally encrypted; this includes encrypted connections blocked by the SSL inspection feature, as well as decrypted and encrypted traffic that matches a Block or Interactive Block access control rule

  • as a result of a promoted access control rule, after a connection has been established and allowed to flow for a few packets so the system can inspect it for requested URLs and application details

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card