11-29-2012 03:50 PM - edited 03-11-2019 05:30 PM
Can cisco block/filter https url such a https://www.cisco.com with inspect map or AP-SSM?
From Whaat i know is asa need third party like websense, to block. https url.
Thx
11-29-2012 05:12 PM
Hello,
It can be done locally using the MPF ( with the use of regex and a layer 7 http inspection policy)
The AIP-SSM provides security to your network by using different mechanism like signature checks, global correlation, anomaly detection,etc.
Now what you might want to use is the CSC-SSM module that provides you web filtering ( trend-micro)
Finally an external websense or any other kind of http url filtering device will do it.
Regards,
11-29-2012 05:24 PM
if user browse https sites thats mean he/she use port https right, i dont see https inspection in cisco asa. I only see http, ftp, dns, etc. so we cant use MPF because its only support http. correct me if im wrong
11-29-2012 07:33 PM
Hello Ibrahim, You will need to use the CSC-SSM module on the ASA or an external server for filter HTTPS..
Exactly
Regards
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide