Web Security

  Has anyone had success with allowing Redhat servers to update using yum through the Ironport WSAs? I don't see any traffic being blocked through GREP, but when the server is exempted using WCCP, it looks like it's connecting to Redhat's servers usi...

hey all,I need to set up a web server in a DMZ on an ASA5505. I am not too confident on the ASA5505 though, anyone with a sample config i can go with? I need to permit FTP as well as http traffic to it.thanks!

Earlier this year we started using CDA for authentication mappings to our Ironport. Apparently the surrogate type we were using was not supported, and CDA was the solution for this.Every so often I have noticed that if I search for a webpage (say a C...

Hello there, Some times when we try doing a policy trace or saving the configuration on our WSA S170 we get a page "Malicius Request" with the message "Error - The request appears to be malicious" and the action is denied.What does it mean?What could...

Hi,We've got Ironport S170 which acts as a proxy server. We've got an application which uses Port 44444. The application connects to a Public IP to get some info. The Ironport is setup to proxy on that port (using Secuirty Services/Web Proxy) but we ...

Hi,I currently have all internal traffic redirected to the CX module for web filtering, the issue I have though is that I can only manage the CX internally. I have an admin RA VPN profile that I would like to use to manage the CX.Has anyone got any a...

I have 3 internal dns with different priority but every time that the dns with priority 0 fail  or is not available , the navigation turns very slowly. I think that the WSA is not able to knows that the DNS fail , and it keeps sending requests to the...

HelloI am implementing Scansafe for a client.We are using a connector on one of our Windows DCs and I can browse through this and am using a Cisco address for browsing.I have set up AD on both scansafe portal and the connector. I tested AD on the por...

HiJust wondering if there is a way to get the scansafe redirect running on Cisco ASA running version 8.2 and 8.4? I know version 9 has it inbuilt but we have some firewalls that are in the process of being replaced with new ASAs running v9 or ISR rou...

I would like to have link on the custom block page that will send an email with the detail of the blocked site so that users can submit it for review.Anyone have an example of this or suggestions?I have an email link working:If you feel this site is ...

Hi.I have a problem with my IronPort. Since few days, i can't login on WebUI.My certificate is up to date. Firefox ask me to add an execption, then nothing -.-!I can login with SSH but can not with a browser.Do you have some ideas ?AsyncOS 7.9 for Ci...

I am looking for some in depth documentation about how Cisco Cloud Web Security (formerly ScanSafe) scans / inspects HTTPS encrypted traffic.  Do the ScanSafe towers act as a "man in the middle"?  Any info is appreciated, otherwise I will have to fig...

Anyone know the frequency of the WBRS and Acceptable Use Controls filter updates?  Is there any known way to send a notify when an update occurs?ThanksDominick               

Lately our S670 has been giving us problems with streaming video. We're a school district with 8,000 students and 1,000 staff. For a variety of reasons, we've recently seen a significant uptick in bandwidth requirements from students and staff. Some ...