Hi, Currently working on a WSA project setup in explicit mode. The customer wants to use cookie surrogate credentials instead of the default IP surrogate credentials because of improved security. I have 2 questions regarding the surrogate cookies: 1....
WSA gurus, I'm working on a couple of WSA projects and just wanted to confirm that the CDA (linux VM image) is the best way to obtain user contextual information with the WSA appliance. Thanks in advance, Bob
Dear all I would like to test a WCCP and WSA feautre. You can see my topology below. Transparent redirection for HTTP(80) works as charm, but I have problem which HTTPS(443) Explicite services works normaly. When I check show ip wccp 90 detail I see ...
I am coming from Bluecoat and we have several rules that are 'Not' something. Example Rule 1: Src:10.0.0.0 255.254.0.0 dst: bing.com action 'ALLOW' Rule 2: Not Src:10.0.0.0 255.254.0.0 or 172.16.0.0 255.255.255.0 DST: google.com, yahoo.com action '...
How can we allow custom HTTPS port like 5443 through WSA ? I am using WCCP transparent re-direction method. Thanks
Hi all,We are using WSA 670 and we are intercepting http and https.We have some vip users those are intercepted but all categories in monitor mode and no https decryption for them.some vip users user chrome and they complaint that they get the folowi...
Hi, we are currently implementing a Cisco S170 Web Security Appliance. Currently there are only a few test-users connected to this applicance but we have massive performance issues. Websurfing seems to be fast but downloads are very slow. When downlo...
Hi all I have s170 work fine with wccp to ASA by M1 and P1 what is the advantage of using p2 ? and how i can use it and can any one give me any config example or cvd of using p2 I didn't fine it at all is P1 and P2 used to high viability ? Is P2 ...
I have users that I need to block/allow from/to certain websites. Since their devices are DHCP and thier address could change, can I use the FQDN device name in Identity or Access policies? I am not see this in the user guide as a option. Thank you ...
Hi all, We have a couple of S170s on AsyncOS 7.7.0 and have found that some windows executables can be downloaded even when the "windows executable" object is blocked by an Access Policy. An example of this is https://download.articulate.com/storylin...
Hi All , We have configured WSA and placed the appliance in inside of the internet firewall .We have tested the connectivity and checked traffic flow configuring WSA as explicit proxy in client machine which was working fine and tested successfully ...
Hi, I am not able to apply for a 45 day demo vWSA license. On selecting vWSA 45 day license under security products it pops up "Access page to this page is restricted". Any idea why it is happening? Attached snap for your perusal. Appreciate your hel...
Hi All, “Locky” ransomware is very horrible, What can we do to defend Locky Ransomware in WSA? Or is it any good suggstions in WSA's configuration? Thanks!
We have had several web sites which are being blocked by our Ironport content filters with a web reputation score of -5.9 - -5.8 (see below) - Based on your organization's access policies, this web site ( ) has been blocked because it has been dete...
I am the system administrator for www.solarrec-auction.com. ; Several of our customers use Cisco IronPort and currently the site is being flagged as Malware. I don't have access to the URL misclassification page, so how can I go about getting this r...
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
| Subject | Author | Posted |
|---|---|---|
| 05-21-2026 03:27 PM | ||
| 07-29-2025 03:24 PM | ||
| 07-29-2025 07:58 AM | ||
| 05-09-2025 11:45 PM | ||
| 02-25-2025 07:56 AM |
