Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

inspect HTTPS

I'm curious if there is a way to stop tunneling applications out HTTPS with ASA 5500. I know everything is encrypted but is there a way to at least inspect the traffic to make sure it complies with RFC 2818? Perhaps there's another way to provide some security?

2 REPLIES

Re: inspect HTTPS

A quick feasible option would be to use WCCP on the ASA and forward all HTTPS traffic to a Squid proxy server and then use the tool ufdbGuard (http://www.urlfilterdb.com/download/software/index.shtml) along with Squid to block traffic.

You can create specific ACL's to redirect traffic with WCCP on ASa.

New Member

Re: inspect HTTPS

is there another tool to run on windows with squid proxy

501
Views
0
Helpful
2
Replies