Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
HiI am trying to figure out what would be the best security level for management0/0 interface on my ASA firewall ? Currently I configured it with security level 100 but I am not sure if this is the best security practice so if anyone can help me on t...
HiDoes anyone know how to see the logs on CLI for specific website ?We are doing SSL decryption and I would like to see if I can see username and password that I enter is visible on the logs in Ironport via CLI ?so lets say I am trying to get logs fr...
HiCurrently we are using cisco Ironport 170 as our production proxy and we let all our internal user traffic through Ironports. for the user laptops when they are not connected to VPN ,Scan safe is kicks in and that kind of handles users web traffic ...
Hi we will try to implement ssl decryption on the Ironport and I was thinking if there is a way to block file typessuch as exe,pdf...) when Ironport decrypts SSL cert . I know how to do this for http traffic but was not sure how to configure it for h...
HiI would like to find out if there is a way in Cisco ironport to separate business and personal outlook account login ?currently we are trying to migrate to O365 and internal user traffic needs to be allowed through Iron port however personal outloo...
thanks balaji and Ruben yeah currently we use management interface0/0 with "management only " command dedicated remote access and its configured with security level 100 .and I was doing some research if 100 is the best practice for mngt interface whe...
in the anyconnect client you can specify to verify cert with Ironport that management interface to verify if the client is actually in the internal network .if this validation fails , Scan safe kicks in and handles the web proxy traffic .
Leo Thanks for your answer I have one more question with SMI I just wanted to verify one of our cisco switches if SMI disabled and I am getting this output after issuing "show vstack config "NFAP4507S01#sh vstack config Role: Not Director (SmartInst...
Hi Handy
Thanks for your quick respond but I am not able to see Web traffic option in Reports tab !we are usingCisco Web Security Appliance S170 version 9.1.1-074 for Web and I was wondering it might be different way to access to web traffic opti...
