Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Correct way to use a Proxy Server behind ASA

Hi All,

I am planning to put up a proxy server on our internal network and would like to see if this is the best way to configure my ASA (7.2(2)):

(1) Proxy located on internal network

(2) All client browser will be set (Internet Explorer) to use the proxy server via the connection setting

(3) On my ASA, allow Proxy server outbound port 80 and port 443, deny all else.

Is there a better way?



Re: Correct way to use a Proxy Server behind ASA

I would tend to allow all outbound connectivity from the Proxy Server on the ASA.

I would then restrict user access at the Proxy Server.

This way, if you need to allow another service, e.g. streaming media, changes only need to be made in one place.

New Member

Re: Correct way to use a Proxy Server behind ASA

if u want to create the proxy server in inside then u must create a nat of the specific proxy

ip with the public ip. also create the access-list for 80 443 and apply it on internal.

CreatePlease to create content