I would like to know the cisco asa inspection for https traffic, I am sending the logs of http,ftp and so on but i am not getting the logs of https into my log server.I don't know why the cisco asa is not sending the logs to the syslog server
There should be no problem with getting TCP connection Built/Teardown messages to the Syslog server whatever their used TCP port is.
If on the otherhand you are trying to get some specific data about that HTTPS connection I think you need either a module for the ASA or an addiotional device/service to handle going through HTTPS traffic for you.
The "inspect http" configuration doesnt apply to https traffic. You also can't see anything related to the HTTPS traffic with the ASA alone since its encrypted.
Hello All, Recently I got an opportunity to perform POC with Cisco ISE (2.7 Patch 4) and Aruba Wireless AP (IAP) to perform 802.1x EAP-FAST (machine + user) authentication followed by Posture Assessment on Windows 10 Machines (installed with AnyConnect 4....
Hello All, Recently I got an opportunity to perform POC with Cisco ISE (2.7 Patch 4) and Juniper EX 2300 switch to perform 802.1x EAP-FAST (machine + user) authentication followed by Posture Assessment on Windows 10 Machines (installed with AnyConnec...
At the core of the new Firewall Threat Defense (FTD) software version 7.x, Snort 3 provides faster and superior threat protection and performance, includes better SecureX integration so SecOPS teams can quickly pivot and correlate events from multiple pr...
This article describes the set of logs that can be verified related to SI feeds, starting from configuring to periodic updates.
The information in this document is based on Cisco FMC and FTD that runs software Version 6.6.5 or later.
pxGrid Integration with Cisco StealthWatch using Microsoft CAObjectiveThis blog will help the readers to configure their Cisco StealthWatch (7.X) and Cisco ISE appliance over pxGrid. What is pxGrid?Cisco pxGrid provides a unified framework that enabl...