Hello all,I apologize if the answer is already posted here.Trying to generate a certificate that uses a 2048 bit. Going through the UI, there is no option to define the bit and it generates a 1024 bit key.Looked at the CLI certconfig and the option t...
Hi,I'm pushing several logs from Ironport into splunk, including System Health Daemon logs.This makes it easy to monitor the current status of the proxies.Most of the entries in the log are quite easy to understand, but I'm uncertain of one field "Ba...
The Aquaforest website (aquaforest.com) suffered an attack back in January which resulted in /en/index.asp being infected with an iFrame JavaScript Trojan.This was corrected a few days after infection but IronPort/SenderBase still show a poor reputat...
Hi,Does anyone have experience with blocking Ultrasurf that users use to bypass the WSA proxy??I was wondering if it is part of cursom categories.If not, would it be possible to bypass this with decrypting https and use a regex?An example or advise w...
Dears,We have the following scenario :we have wireless internet which is integrated with radius server (NPS)computer joined to the domaine are authenticated directly using NTLM standalone computers are prompt for a user name and password,my question ...
Due to auth issues with machine credentials caching on the WSAs and causing users to be unable to access the Internet I was wondering if I could allow a specific path and block the rest of the site to users. So I would like to specifically allow the...
I have a scenario where an ASA has two internal interfaces, corporate and guest and one outside Internet interface, with no layer 3 routing on the inside between the corporate and guest networks (VLANs). Transparent redirection with WCCP is to be us...
Hello all,I need some advice / help getting WCCP working with our Cisco Ironport, ASA and 3945 router. At the moment, I’m trying to isolate the WCCP redirect traffic to my own PC so I don’t break our existing proxy traffic.This is our setup:LAN: 192....
The Release Notes for AsyncOS for WSA 6.3.3 through 7.5.7 state in Known Issue #51433 "The Web Security appliance sends the authenticated user name (X-Authenticated-User value) to external DLP servers in a format that is not compliant with the ICAP R...
We are having problems with HTTPS file downloads failing when going through our IronPort S370 Proxy. Files will partially download in a resulting corrupt file, but the application will not perceive there to be a failure.This happens at various point...
You can control the bandwidth per user after reaching a certain limit of Quota?example:User may view one hour of videos on the Internet or downloading 100MB of videos.If you reach your quota this connection is only limited to 200Kbps and not totally ...
Hello,We are running OS ver 7.5.0 for our web security appliance. Recently, we found out that none or of PC's can activate MS Office products. We go to the website https://activation.sls.microsoft.com/slpkc/SLCertifyProduct.asmx and we get a certific...
