Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2372
Views
0
Helpful
2
Replies

Cisco FMC Reporting - Bandwidth Statistics

filipe.marins
Level 1
Level 1

‎10-11-2018 12:19 PM - edited ‎02-21-2020 08:20 AM

Hello,

 

I read in forums that even without SSL inspection (Man-in-the-middle) enabled the FMC can get information about certificates to make decisions in inspections.
I know that an encrypted file is not inspected (malwares can use this to bypass security controls). Despite this, can FMC understand how much traffic bytes are transferred in a session ssl without SSL inspection (decrypt \ resign)?

This is important for my bandwidth consumption reports

0 Helpful
2 Replies 2

Marvin Rhoads
Hall of Fame
Hall of Fame

‎10-11-2018 08:12 PM

FMC is not strong on detailed reporting like you're asking about. Cisco usually steers customers to the WSA for robust reporting.

 

This may change going forward with things like enhanced capabilities in CDO management but for now you're limited.

0 Helpful

filipe.marins
Level 1
Level 1
In response to Marvin Rhoads

‎10-15-2018 05:28 AM

I know that FirePower is not a proxy solution. Because of that, especially for ssl traffic, the visibility of the web traffic is not complete. The aquisition of the WSA are not a goal fot the moment

So I need to design any reports for my leader with FMC.

The question is: Can I see total traffic rx / tx for an HTTP (s) connection? Or for this I need to have ssl inspection for the FirePower act as a MitM ant the make deep inspection on encrypted packets?

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card