Mike

check this out

                         Service Status

---------------------------------------------------------------------

The CSC SSM RegServer service is running

The CSC SSM URLFD service is running

The CSC SSM ScanServer service is running

The CSC SSM HTTP service is running

The CSC SSM FTP service is running

The CSC SSM Notification service is running

The CSC SSM Mail service is running

The CSC SSM GUI service is running

The CSC SSM SysMonitor service is running

The CSC SSM Failoverd service is running

The CSC SSM LogServer service is running

The CSC SSM SyslogAdaptor service is running

The CSC SSM Syslog-ng service is running

The CSC SSM TMCM-Agent service is not enabled

Do you want to restart all services? [y|n] n

as we can see the Trend micro service in not enabled.  I can login in to the module with https://192.168.50.1:8443 but do not see anywhere to enable a service....

thanks

If reseating shows the same status for Data plane pls. open a TAC case as the ASA/CSC may need to be replaced.

-KS

jeNiffer

are you suggesting to rest the module to factory defaults? coz i have done a reload on the module but no luck...

BTW the physical connection to the ASA from the module is fine guess. coz i can ping back and forth.... and loging seperatly to the module on https://IP:8443

thanks

No, i am not suggesting that you set it to factory defaults. The module itself is absolutely fine, that is why you can access it and configure it. You are accessing the module via the external port of the module (management port).

The problem lies between the module and the ASA backplane, where the data flows from the ASA through to the module to be inspected.

So as per my suggestion earlier, please shutdown the module, and reseat it (physically take the module out of the ASA and put it back in again firmly). This is to ensure that the backplane connectivity between the ASA and the module works.

Guys

Issue resolved . I had a old IOS version on my ASA7.0.8, whereas the CSC-SSM supports above 7.1(1)....

http://www.cisco.com/en/US/partner/prod/collateral/vpndevc/ps6032/ps6094/ps6120/ps6823/product_data_sheet0900aecd80402e4f.html

Thanks for the inputs

Did u answer it? anyway ill give u a five

Dear

at the moment i have configured the CSC-SSM, and directed http traffic from just one user.... But Loading websites are very slow..

i tried disabling http scanning but no luck, its still the same..

URL filtering and blocking works fine though.

could i be missing something

pls help

Afshan

Afshan,

Pls. check this document that I wrote: https://supportforums.cisco.com/docs/DOC-12671#Internet_traffic_is_very_slow

Remove http inspection if enabled.

-KS

Sankar

i dont have http inspect enabled.. this is wht the policy map is. pls look-in to this

class-map inspection_default

match default-inspection-traffic

class-map csc_out_class

match access-list csc_out_list

!

!

policy-map type inspect dns migrated_dns_map_1

parameters

  message-length maximum 512

policy-map global_policy

class inspection_default

  inspect dns migrated_dns_map_1

  inspect ftp

  inspect h323 h225

  inspect h323 ras

  inspect netbios

  inspect rsh

  inspect rtsp

  inspect skinny 

<--- More --->

  inspect esmtp

  inspect sqlnet

  inspect sunrpc

  inspect tftp

  inspect sip 

  inspect xdmcp

  inspect pptp

policy-map csc_out_policy

class csc_out_class

  csc fail-open

  set connection per-client-max 10

Thanks

could it be a missmatch between my ASA software 8.0(4) and  CSC SSM 6.3.1172.0 ? But is it possible since the CSC is completely working on its own?