About Kevin Redmon

Kevin Redmon · 01-25-2011

IntroductionOne of the ASA features is URL filtering. It can be used to block or allow users from going to certain URLs/websites. This article aims to educate the user on how to use and configure this feature via ASDM. After reading it carefully some...

Kevin Redmon · 06-10-2009

OverviewTerminologyPrerequisitesStep-by-Step configuration exampleDocumentation OverviewThe Cisco ASA phone proxy feature allows remote Cisco IP phones to establish secured communication channels directly with the ASA. These secure communications ter...

Kevin Redmon · 06-10-2009

OverviewTerminologyPrerequisitesStep-by-Step configuration example[edit]Documentation OverviewThe Cisco ASA phone proxy feature allows remote Cisco IP phones to establish secured communication channels directly with the ASA. These secure communicati...

Kevin Redmon · 09-21-2010

Sorry that I forgot to include the link to the packet captures - here it is for future reference:https://supportforums.cisco.com/docs/DOC-1222Based on the packet captures that you had provided, it seems as though the server at 12.180.11.111 is sendin...

Kevin Redmon · 09-21-2010

The ASA is a stateful firewall and does support Deep Packet Inspection. However, as you stated, HTTPS is not a protocol that can be inspected and modified - at least not by the ASA. The devices that do impact HTTPS are playing "Man in the Middle" -...

Kevin Redmon · 09-21-2010

Ian,Can you please provide us the flow that is/isn't working in the two scenarios below? In particular, what is the source/destination IP address and VLAN. Also, what is the difference in the routing tables between the non-working and the working s...

Kevin Redmon · 09-21-2010

Is there anything that is especially unique about these policy's access-lists versus others? Are you able to modify other firewall policy/access-lists without issue?Were the policies originally configured via CCP or via CLI? If you configured them ...

Kevin Redmon · 09-21-2010

Ian,As KS had said, a text-based topology would be great. My guess based strictly on your problem description is that you are likely hitting an asymmetric route situation. In a routed network, the next Layer-3 device will make the next route decisio...

Member Since	‎04-26-2006 06:00 AM
Date Last Visited	‎04-19-2023 08:24 AM
Posts	88
Total Helpful Votes Received	43

User Statistics

User Activity

ASA URL Filtering via ASDM

ASA Phone Proxy sample configuration via ASDM

ASA Phone Proxy sample configuration via ASDM

Re: Disable "Stateful Packet Inspection" on ASA 5510

Re: Disable "Stateful Packet Inspection" on ASA 5510

Re: FWSM Incoming Traffic on inside Interface

Re: CCP and Zone-based firewall: Editing FW policy issuee

Re: FWSM Incoming Traffic on inside Interface