Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
327
Views
0
Helpful
1
Replies

ASA 5505 and non-local Smart Filter

riptide451
Level 1
Level 1

‎06-13-2007 12:24 PM - edited ‎03-11-2019 03:30 AM

Greetings.

We have a site where there are several remote buildings that connect through a VPN to the main office at that location, and the main office then connects to our larger WAN.

We split the tunnels at these remote locations so surfing and whatnot uses local bandwidth.

We want to filter the web surfing at these locations, and have a web filter set up at the main office for that site, but the ASA's are not able to connect to the URL filter on the other end of the VPN tunnel.

Is what we're trying to do a supported configuration?

We could set it up so the outside IP of the ASA's has access to the internal URL filter, but we're using transparent authentication and I'm concerned about passing user credentials through an non-secured connection.

Labels:
0 Helpful
1 Reply 1

Not applicable

‎06-20-2007 11:56 AM

The PIX firewall can be configured to communicate with a Websense server to restrict outbound HTTP traffic (FTP and HTTPS in 6.3). The Websense server's essential responsibility is to create and enforce a set of policies to allow or deny access to specific URLs

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a00801e4197.shtml

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card