Working on setting up a Websense V5000 with our Cisco 6509. We'd like to monitor all traffic/protocols going out to the Internet so I setup a mirror port from the port on the 6509 that the Inside interface on our ASA 5520 is plugged into and made the export of the mirror to the N-Port for the Websense. I believe we're seeing traffic as expected, but from everything I've been able to find online it doesn't sound like the Websense will be able to block the traffic due to the 6509 not being able to 'inject' packets?
What are our options? We have a Fluke TAP device, but I've never used to and I'm not sure if that is able to inject packets either.
Also, we have an older 6509 running version 12.2(17d)SXB9 if it helps.
I am sorry, but i didn't quite get your question. Are you trying to test the if Websense works ?
When you say " 6509 not being able to 'inject' packets " .. are you trying to setup a illegitimate traffic to see if websense blocks it ?
If thats right then you can try this. Hook up a switch/router to 6500 and try telneting to it from the 6500. If it is not authorised as per Websense policy.. then Webesense should be able to tear down the TCP session ( by sednign a TCP RST).
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...