This issue is due to the presence of Cisco bug ID CSCse55931.
This problem occurs when the firewall is configured to filter URLs through Websense or N2H2 and has the url-block blockcommand enabled, then available 1550 byte blocks can deplete. This results in a disruption of communication between the firewall and the Websense server.
When this issue occurs, the PIX/ASA firewall does not send the URL Lookup_Request or Status_Request to the Websense server, which results in HTTP traffic blockage.
In order to resolve this issue, disable the url-block block command.
The url-block block < block_buffer > command creates an HTTP response buffer in order to store web server responses while it waits for a filtering decision from the filtering server. The permitted values range from 1 to 128. This specifies the number of 1550-byte blocks to use.
This issue is fixed in PIX/ASA firewall version 7.2(2) and later, which can be downloaded from the Software Download Center.
Hi,After update to 12.1.0, https GUI cert was deleted. When I try to import it again get error "Certificate lifetime must not exceed 18250 days".AsyncOS v.11 worked correctly with the same certificate.Because of our company has Corporate Root CA until 207...
Server Version#: Version 22.214.171.1244Player Version#: Version 4.10.1 I have PMS installed on Debian Linux. I’m able to reach it when using <local_IP>:32400/web. I’m also able to see the server when I log into plex.tv. However, I’m having issues ...
Hi I hope you guys have already seens this. I am trying to assign a mac to a group (static assignement) and I get this:Unable to create the endpoint.Endpoint ZZ:ZZ:ZZ:ZZ:ZZ:ZZ already exists However when I search for the specifi...
Hi all , has anyone came across any cisco documentation on banner grabbing prevention ?example below from running zenmap with this command nmap -sV --script banner 10.0.0.59(truncated)5060/tcp open sip Tandberg-4137 VoIP server X12.5.15061/tcp ...
Hi guys,We don't want to use NSP or certificate during the single SSID BYOD On-boarding, we just want to let user register their device's MAC address and then authorization the VLAN based on user group.I found below discussion, but seems the screen copy i...