Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
436
Views
0
Helpful
1
Replies

HTTPS INSPECTION

harisapkota123
Level 1
Level 1

‎03-23-2011 11:41 PM - last edited on ‎03-25-2019 05:46 PM by Community Manager

Dear all,

Currently im working with ASA5510 software version  (asa803-k8.bin). I have CSC module installed on it.. I tried to block the website (facebook.com) using (*facebook*). if users try to get to facebook.com using http session it is easily blocked as we needed.. but we found that users are being succeed using https://facebook.com session which was not blocked by ASA. I request you to advise the best solution. Thank you.

Regards

Hari,

Labels:
0 Helpful
1 Reply 1

Jennifer Halim
Cisco Employee
Cisco Employee

‎03-24-2011 02:15 AM

HTTPS inspection is not supported on CSC module because HTTPS traffic is encrypted traffic hence it is not able to inspect it.

In any case, only the following ports are supposed to be configured to be sent from ASA towards the CSC module:

  • FTP connections opened to TCP port 21

  • HTTP connections opened to TCP port 80

  • POP3 connections opened to TCP port 110

  • SMTP connections opened to TCP port 25

All other ports are not supported.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card