The Subscription-based Cisco IOS Content Filtering feature interacts with the Trend Micro URL filtering service so that HTTP requests can be allowed or blocked, and logged, based on a content filtering policy. The content filtering policy specifies how to handle items such as web categories, reputations (or security ratings), trusted domains, untrusted domains, and keywords. URLs are cached on the router, so that subsequent requests for the same URL do not require a lookup request, thus improving performance.
On August 17, 2012 the Identity certificate was changed on the Trend Micro server that the Cisco IOS device talks to. Since the new identity certificate is signed by a different Certificate Authority (CA), all users of the Cisco IOS Content Filtering feature must replace the CA certificate installed on the Cisco IOS device with the new CA certificate listed below, for the content filtering feature to continue working after August 17, 2012.
Affected users (which is all users who are using the Cisco IOS Content Filtering Feature), must log into their Cisco IOS device and update the CA Certificate for the Trend Micro server. In the below example, the trustpoint name is trendmicro, however it may be different on your specific device. You may however just copy and paste in the commands below (in configuration mode) to install the new CA certificate.
Step 1 - Remove Existing (old) CA Certificate
Issue the command no crypto pki trustpoint trendmicro (where trendmicro is the current name of your trustpoint). You will be prompted to ensure you want to delete the existing trustpoint, choose Yes.
Hi Community, We have upgraded from ISE v3.0 to v3.1 p3 and after the upgrade, we are observing that default interface for service traffic is changed to eth0, whereas, before the upgrade it was through eth1. Hoping for any resolutions on this issue.&...
I’m running into an issue with some windows 10 clients.After the clients register in the Guest portal, and a successful logon page appears, instead of getting directed to the internet the clients are getting re-directed back to register.If the clients go ...
Hi community members,
I need help here. we are using FTD 4125 physical appliance and configured SSL VPN with self-signed cert. whenever users try to connect AnyConnect, the application prompt warning that this is not trusted CA.
I do not want to pu...
I am installing an Exchange server behind an FPM 1010 running FDM. I have a public ip natted to internal. When I do a "What is my IP" from the exchange server console, I get the public ip of the FPM 1010. What do I need to change in the 1...
We are going to upgrade a ASA & ASDM Firmwares on a Firepower 2120 device.
We'd like to know if the current Firepower firmware will be compatible with the ASA & ASDM Firmwares which we are going to install.
ASA & ASDM Firm...