Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
561
Views
0
Helpful
1
Replies

application executable file

Go to solution
John
Level 1
Level 1

‎01-21-2016 05:39 PM

May we please ask your assistance regarding blocking of an application that bypasses our Ironport web security appliance. The application is an executable file. This is now widely used by proxy users and they can surf without restrictions. No logs found in Ironport web security appliance.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Handy Putra
Cisco Employee
Cisco Employee

‎01-21-2016 10:39 PM

Hi John,

If the application traffic is not going to the WSA appliance, therefore WSA will not be able to block it.

There is possibility that the application is not using port 80/443 therefore WSA will not process the traffic and try to go direct out.

If that is the case, blocking this traffic from the border firewall will be the best bet.

You can check from the client machine that using that application by running a packet capture (such as using wireshark) to confirm where the traffic are going to.

Hope this helps.

Regards,

Handy

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Handy Putra
Cisco Employee
Cisco Employee

‎01-21-2016 10:39 PM

Hi John,

If the application traffic is not going to the WSA appliance, therefore WSA will not be able to block it.

There is possibility that the application is not using port 80/443 therefore WSA will not process the traffic and try to go direct out.

If that is the case, blocking this traffic from the border firewall will be the best bet.

You can check from the client machine that using that application by running a packet capture (such as using wireshark) to confirm where the traffic are going to.

Hope this helps.

Regards,

Handy

0 Helpful
Customers Also Viewed These Support Documents