Web Security

We have an ASA configured for WCCP, forwarding to a WSA in Transparent mode. HTTP traffic is blocked correctly per our policies. However, even though HTTPS Proxy is enabled with a root cert and Decryption Policy is set for global to Decrypt, the HTTP...

Hello all.Pretty straight forward question: Is that possible to allow the access to a specific Facebook page while blocking everything else? Something like: www.facebook.com/cisco.Thanks.

Hi,I have recently installed S370 AsyncOS 7.5.0-833 release at a customer site.  With URL filtering enabled, I noticed a strange behaviour when attempting to block Web-Based Email category.  If I attempt to browse www.gmail.com, URL gets redirected t...

Is there a way to re-categorize a URL? We have a few that we would like to move into the Business category.

I I am Curently at ASyncOS version 7.1.4-053 ; When editting "End-User Notification" there are 3 default types of pages: End-User Acknowledgement Page End-User Notification PagesandEnd-User URL Filtering Warning Page You have the ability to redirec...

So i have a default identity policy that takes the identity of a user from an AD agent, i have also set up NTLM transparent authentication in case AD agent can not identify the user.it works well on our windows domain attached PCs but there is a prob...

Hi,How to release only one video youtube.com domain?The domain youtube.com is blocked in global policy.My version is 7.5.0 Web IronPort Best Regards, Paulo AraujoInfrastructure AnalystMail:paulo.sibalde@gmail.comSkype: psibalde

Hi,I'm pushing several logs from Ironport into splunk, including System Health Daemon logs.This makes it easy to monitor the current status of the proxies.Most of the entries in the log are quite easy to understand, but I'm uncertain of one field "Ba...

The Aquaforest website (aquaforest.com) suffered an attack back in January which resulted in /en/index.asp being infected with an iFrame JavaScript Trojan.This was corrected a few days after infection but IronPort/SenderBase still show a poor reputat...

Hi,Does anyone have experience with blocking Ultrasurf that users use to bypass the WSA proxy??I was wondering if it is part of cursom categories.If not, would it be possible to bypass this with decrypting https and use a regex?An example or advise w...

Dears,We have the following scenario :we have wireless internet which is integrated with radius server (NPS)computer joined to the domaine are authenticated directly using NTLM standalone computers are prompt for a user name and password,my question ...