Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
664
Views
0
Helpful
1
Replies

Secure Web Browser client

dan.letkeman
Level 4
Level 4

‎04-23-2017 08:09 AM - edited ‎03-12-2019 06:22 AM

Hello,

I am experiencing many connections from various users and devices that show as a Secure Web Browser client.  When this happens there is usually no web application or url information associated with the connection, so I am unable to know what type of traffic this is.

I have a tac case open, but even they do not know what it is.

See the attached image.

Thanks,

Dan.

Labels:
Preview file
181 KB
0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎04-23-2017 10:54 PM

My educated guess would be an application using https without a User-agent string that the FMC can parse. The destination is in Akamai's CDN so not much of a clue there. Possibly it is software updates or streaming content.

Iwould check one of your internal endpoints and use something like tcpview to determine what process is contacting that destination address. 

If you had Cisco Stealthwatch (or some other Netflow collector), you could use the AnyConnect network visibility module to gather the information. 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card