WSA gurus,
I'm working on a couple of WSA projects and just wanted to confirm that the CDA (linux VM image) is the best way to obtain user contextual information with the WSA appliance.
Thanks in advance,
Bob
Dear all
I would like to test a WCCP and WSA feautre. You can see my topology below.
Transparent redirection for HTTP(80) works as charm, but I have problem which HTTPS(443)
Explicite services works normaly.
When I check show ip wccp 90 detail I see...
I am coming from Bluecoat and we have several rules that are 'Not' something. Example
Rule 1: Src:10.0.0.0 255.254.0.0 dst: bing.com action 'ALLOW'
Rule 2: Not Src:10.0.0.0 255.254.0.0 or 172.16.0.0 255.255.255.0 DST: google.com, yahoo.com action ...
Hi all,We are using WSA 670 and we are intercepting http and https.We have some vip users those are intercepted but all categories in monitor mode and no https decryption for them.some vip users user chrome and they complaint that they get the folowi...
Hi,
we are currently implementing a Cisco S170 Web Security Appliance. Currently there are only a few test-users connected to this applicance but we have massive performance issues. Websurfing seems to be fast but downloads are very slow. When downlo...
Hi all
I have s170 work fine with wccp to ASA by M1 and P1
what is the advantage of using p2 ? and how i can use it
and can any one give me any config example or cvd of using p2 I didn't fine it at all
is P1 and P2 used to high viability ?
Is P2 ...
I have users that I need to block/allow from/to certain websites. Since their devices are DHCP and thier address could change, can I use the FQDN device name in Identity or Access policies? I am not see this in the user guide as a option.
Thank you...
Hi all,
We have a couple of S170s on AsyncOS 7.7.0 and have found that some windows executables can be downloaded even when the "windows executable" object is blocked by an Access Policy.
An example of this is https://download.articulate.com/storyl...
Hi All ,
We have configured WSA and placed the appliance in inside of the internet firewall .We have tested the connectivity and checked traffic flow configuring WSA as explicit proxy in client machine which was working fine and tested successfull...
Hi,
I am not able to apply for a 45 day demo vWSA license. On selecting vWSA 45 day license under security products it pops up "Access page to this page is restricted". Any idea why it is happening? Attached snap for your perusal.
Appreciate your hel...
Hi All,
“Locky” ransomware is very horrible, What can we do to defend Locky Ransomware in WSA? Or is it any good suggstions in WSA's configuration? Thanks!
We have had several web sites which are being blocked by our Ironport content filters with a web reputation score of -5.9 - -5.8 (see below) -
Based on your organization's access policies, this web site ( ) has been blocked because it has been dete...
I am the system administrator for www.solarrec-auction.com. ; Several of our customers use Cisco IronPort and currently the site is being flagged as Malware. I don't have access to the URL misclassification page, so how can I go about getting this r...
I have a pair of S380 WSAs using WCCP redirect from an ASA. I'm doing http and https proxying. The clients all have the certs of the WSAs to enable the decryption. The WCCP load balancing is done by destination (the default). I have random users ...
