Re: Exception to allow access to Twitter - Cisco web security

jessicaday · ‎09-30-2019

Hi All

I want to set up a rule to allow specific users access to the Twitter website. This is blocked for all other users.

I thought I had set this up correctly (and it did seem to be working), however the website now seems to be blocked again.

I noticed that twitter is a https site, so not sure if that makes any difference?

Thank you

assethum · ‎09-30-2019

Hello,

I would recommend to check the access logs and understand the tag of the block and also check if the traffic is matching the correct identity/decryption/access policy. If the traffic is https, it will matter if you have decryption enabled. Are you decrypting the twitter traffic and allow it in access policy? Or have you set the traffic to pass-through in the decryption policy.

Thanks

Ash

jessicaday · ‎10-16-2019

Hi Ash, thanks for coming back to me

How do I get to the access logs, can they be found within Reports?

We have a Company HTTPS Policy set up, however it is currently set to "inactive". Underneath this is a Default rule which is set to "do not inspect".

Thanks for your help

assethum · ‎10-16-2019

Hello,

You can tail the access logs using the "grep" command in the cli. Type in grep , select the number of the "access logs" and select "Y" for tailing the access logs. You can grep for the 'ip address' trying to access twitter. This way you can get the live access logs when trying to access twitter.

Thanks

Ash