With an advanced Inspection and Prevention Security Services Module (AIP-SSM 20) for the Cisco ASA 5500 Series Adaptive Security Appliance residing at my perimeter, I am in need of choosing a solution for granting safe and secure Internet access to my 2000+ userbase on the inside. A solution that would suffice as my proxy/web caching needs too and possibly allowing me to do URL filtering according to my policy.
I was looking at secure computing's webwasher and Microsoft's ISA 2006 as possible solutions. Bluecoat is expensive. These guys tout of their L7 capabilities to detect malwares and scan HTTPS traffic but I feel that my AIP SSM should be able to do that job.
What do you guys advise!!? Wouldn't my SSM module check all the internet traffic floating by for all malwares/viruses/http attacks etc?