09-28-2009 10:37 AM - edited 03-10-2019 04:46 AM
I'm curious if there is a way to stop tunneling applications out HTTPS with ASA 5500. I know everything is encrypted but is there a way to at least inspect the traffic to make sure it complies with RFC 2818? Perhaps there's another way to provide some security?
09-30-2009 07:37 AM
A quick feasible option would be to use WCCP on the ASA and forward all HTTPS traffic to a Squid proxy server and then use the tool ufdbGuard (http://www.urlfilterdb.com/download/software/index.shtml) along with Squid to block traffic.
You can create specific ACL's to redirect traffic with WCCP on ASa.
04-14-2013 02:11 AM
is there another tool to run on windows with squid proxy
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide