Cisco Web Security virtual appliance blocking RDP in https
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-04-2015 06:31 PM
Hello,
We have recently implemented a Cisco Web Security virtual appliance (Ironport). Its running the latest version 8.
We have it as a transparent proxy using WCCP at the ASA to redirect https and http to the proxy. Its all working fine except for Microsoft Remote Desktop when its tunnelled through https (used to be call TS web access).
We can logon to an TSweb site, which presents the applications we can run, but when we click on the RDP icon (or app) it gives an error.
I can't seem to find why the proxy is blocking it. What I have had do to is exclude that site from being redirected in the WCCP list. But I'd like to get to the bottom of it and make the proxy allow it.
Thanks, Simon.
- Labels:
-
Web Security

- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-05-2015 12:11 AM
Hi Simon,
IronPort WSA only supports HTTP, HTTPS and FTP protocol, hence it is not
going to understand the RDP protocol and eventually drop the traffic.
So if the website is HTTPS, you can create a Custom URL category and configure it to "passthrough" the TSWebsite traffic.
Regards,
Kush
