I was reading about this and on websense site they talk of multiple ways to block Tor but they also mention that Tor sites registered are around 1300 so at the firewall I don't believe that regex level will help. I am going to check with CSC module that does URL filtering over HTTP/HTTPS sites.
5540 by itself cannot block Tor based on the fact that it works over HTTPS and ASA has no inspection for HTTPS, if you have a CSC module on the ASA that could drop it but it seems that you should be reaching out to websense since they should be able to block HTTPs as the firewall can do HTTPS redirects to Websense filter.
Show Name: Thoughts on Security at Cisco Live US 2018 in Orlando
Contributors: Kevin Klous, David White Jr., Aaron Woland, Jeff Fanelli
Posting Date: June 2018
Description: The team goes on-site in the Cisco Live Speaker room in...
RADIUS and Symantec VIP.
I will use screenshots of ASDM, and at the end I will add the required CLI commands. the diagram below show a diagram of the steps the FW goes through when using 2FA authentication:
As you can see in Fig. 1&nbs...