cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
748
Views
1
Helpful
6
Replies

WSA & TG Port

Mandeep singh5
Level 1
Level 1

Hello All,

I need to confirm that If we will integrate Cisco WSA with TG (ThreatGrid) then for the communication what all port numbers do we need to allow in the firewall?

In TG & WSA integration, we're going to integrate it with WSA p1 interface to TG Clean interface.

Same I need to confirm for SMA & WSA as well, If I integrate Cisco SMA with WSA then which port number needs to be open for communication?

@amojarra @websecurity

1 Accepted Solution

Accepted Solutions

amojarra
Cisco Employee
Cisco Employee

Hi @Mandeep singh5 

 On-prem uses port 443, same for the public cloud. 

please allow me to share this link, that might come in handy: 

https://www.cisco.com/c/en/us/support/docs/security/secure-web-appliance/218441-configure-firewall-for-secure-web-applia.html

 

Regards,

Amirhossein Mojarrad

+++++++++++++++++++++++++++++++++++++++++++++++++++

++++        If you find this answer helpful, please rate it as such      ++++

+++++++++++++++++++++++++++++++++++++++++++++++++++

 

View solution in original post

6 Replies 6

balaji.bandi
Hall of Fame
Hall of Fame

If this cloud, then port 80 and 443 is good enough to reach cloud.

SMA to WSA port 22 is good enough.

Make sure you use Right Interface (P1) most cases P1 is used internally.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Hello Balaji,

We have on-prem TG not in cloud. For on-prem TG as well, I believe we need to open 443 port number right?

 

yes if that not in the same VLAN.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Not in the same VLAN means WSA p1 interface subnet should be different from TG Clean interface subnet? 

amojarra
Cisco Employee
Cisco Employee

Hi @Mandeep singh5 

 On-prem uses port 443, same for the public cloud. 

please allow me to share this link, that might come in handy: 

https://www.cisco.com/c/en/us/support/docs/security/secure-web-appliance/218441-configure-firewall-for-secure-web-applia.html

 

Regards,

Amirhossein Mojarrad

+++++++++++++++++++++++++++++++++++++++++++++++++++

++++        If you find this answer helpful, please rate it as such      ++++

+++++++++++++++++++++++++++++++++++++++++++++++++++

 

I need to integrate TG from its clean interface with the WSA P1 interface. If the both interface will be on same subnet then I don't think that it will create issue. Please confirm?