Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
849
Views
0
Helpful
2
Replies

inspect HTTPS

snickered
Level 1
Level 1

‎09-28-2009 10:37 AM - edited ‎03-10-2019 04:46 AM

I'm curious if there is a way to stop tunneling applications out HTTPS with ASA 5500. I know everything is encrypted but is there a way to at least inspect the traffic to make sure it complies with RFC 2818? Perhaps there's another way to provide some security?

Labels:
0 Helpful
2 Replies 2

dhananjoy chowdhury
Level 5
Level 5

‎09-30-2009 07:37 AM

A quick feasible option would be to use WCCP on the ASA and forward all HTTPS traffic to a Squid proxy server and then use the tool ufdbGuard (http://www.urlfilterdb.com/download/software/index.shtml) along with Squid to block traffic.

You can create specific ACL's to redirect traffic with WCCP on ASa.

0 Helpful

m-mostafa
Level 1
Level 1
In response to dhananjoy chowdhury

‎04-14-2013 02:11 AM

is there another tool to run on windows with squid proxy

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card