Web Security

WSA proxy CPU value issues

Hello, Unfortunately the proxy cpu value which is displayed on WSA is different than the value that we can see on the shd logs. At the same time, we observe that the proxy cpu displays unrealistic values like 50.000% or --%. On the snmp logs, we also...

Resolved! Ldap User authentification WSA vs SMA

Hi Everyone, I am setting up two WSA devices managed by an SMA device. I am working on setting up the WSA LDAP for user authentification (having issues but that is another subject) What I trying to figure out is the relationship between the WSA set...

WSA blocks all categories even the monitored

Hi, i have a WSA configured as transparent. after blocking some URL categories , once i add proxy server to machine or browser in blocks all the URLs even the allowed web categories. and i need to find a solution ASAP

Resolved! Web Security Appliance

Hey guys,Good day. So guys I have been going through WSA and I was not sure why we need it if we have got a Cisco FTD/FMC, I mean FTD offers features like Web filtering and Deep packet inspection so why do we need Cisco WSA.Can you guys please mentio...

Resolved! Cisco WSA Custom URL Category Regex Syntax

Hello, I am in the process migrating from a third-party proxy to Cisco WSA. The third-party proxy has custom url categories containing entries in the syntax "example.com/path1/path2". When I tried to enter the same in the custom URL category "Sites" ...

Resolved! Ironport WSA Log Fields

Good Afternoon,Based on the Ironport WSA documentation for fields cs-bytes & sc-bytes, which is upload/download? I'm finding conflicting information.%qcs-bytesRequest size (headers + body).%ssc-bytesResponse size (header + body).Cheers,James

Resolved! Dual Active Active WSA Load balanced by F5 LTM.

Hi Everyone, We want to setup two WSA Web security Appliances, behind an F5 LTM load balancer. (See the attachment) The F5 load balancer will not handle the SSL certificate as it is listening on port 8080. This traffic will then be sent to the WSA...

WSA removes CRL information in certificate.

Our WSA-proxy performs TLS-decryption for End-User Notification. If a user tries to visit a webpage in a forbidden URL category (not permitted by policy) then a block message is shown. If the user uses Firefox or Google Chrome then everything works a...

Resolved! How to bypass umbrella for single URL,

Hi All I am trying to figure out how to bypass umbrella for a single URL, (needs to go via DC). Our customer has migrated over to umbrella and we need to source the end user's traffic from our External FW. Currently, we have Anyconnect with the um...

Resolved! Change Web Interface Certificate on WSA

Let me preface this question by saying that I'm not asking how to install an SSL for HTTPS Proxy for Transparent Redirection. I've already done that and it's working. What I would like to know is how to change the SSL certificate the appliance is usi...

Resolved! Bandwidth Cisco WSA

Hello,I want to ask about bandwidth in menu Reporting > System Statusis it the bandwidth represent the amount of total bandwidth used from all client through the proxy to internet?what is different from menu Reporting > System Capacity > Bandwidth Ou...

Talos Intel vs Firepower URL Categories?

Looking through the Talos Intelligence Categories here: https://www.talosintelligence.com/categoriesversus the URL categories available in Firepower....they don't match up....(106 on Talos site, and 126 in firepower)Granted that 'any', 'uncategorized...

CA server Auth Problem

hi , i have problem with connecting one device to CA server i create trustpoint crypto pki trustpoint CA enrollment terminal serial-number subject-name CN=x , OU=x revocation-check none rsakeypair my.ca.keybut when i paste CSR that i create with...

Cisco ISE - err cert authority invalid

Hello ! I have installed and configured Cisco ISE 3.1. Guest user connects to ssid and gets it's credentials for access to internet. Everything is ok here. But when user attempts to type any site in the browser it says "err cert authority invalid". I...

Resolved! Separate default route for P1 and P2

Hi there. Is it possible to configure P1 and P2 on a Cisco WSA so that they each have their own default route?

Web Security

Forum Posts

WSA proxy CPU value issues

Resolved! Ldap User authentification WSA vs SMA

WSA blocks all categories even the monitored

Resolved! Web Security Appliance

Resolved! Cisco WSA Custom URL Category Regex Syntax

Resolved! Ironport WSA Log Fields

Resolved! Dual Active Active WSA Load balanced by F5 LTM.

WSA removes CRL information in certificate.

Resolved! How to bypass umbrella for single URL,

Resolved! Change Web Interface Certificate on WSA

Resolved! Bandwidth Cisco WSA

Talos Intel vs Firepower URL Categories?

CA server Auth Problem

Cisco ISE - err cert authority invalid

Resolved! Separate default route for P1 and P2

How to install a godaddy .crt file on ASAv10

Cisco WSA AsyncOS offline upgrade

Suggestion to Include More CTF Challenges in the Ethical Hacking Cours

Cisco Umbrella - upload file names

Cisco Talos Content Categorization

CISCO IRONPORT S100V VULNERABILITIES REMEDIATION

FMC Current Interface Status and Interface traffic Widgets

Are there not three different man in the middle attacks here?

Session resumption setting in WSA

WSA S695 / S195 Web Security Appliance: NWS: failoverHealthy/Unhealthy