Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
316
Views
0
Helpful
3
Replies

cisco asa firewalls and proxying ?

carl_townshend
Spotlight
Spotlight

‎08-27-2008 03:12 AM - edited ‎03-06-2019 01:01 AM

Hi all, after reading my firewall course notes, it says that the asa acts a a proxy server, it says stateful inspection combines packet filtering and proxy services. Can anyone tell me what exactly it proxies? does this mean the firewall initialises these connections, and is it only for certain applications ?

Labels:
0 Helpful
3 Replies 3

Marwan ALshawi
VIP Alumni
VIP Alumni

‎08-27-2008 04:23 AM

with packet filltering firewall and router look at lyer three IP source and distination and layer four port number tcp/udp

but with the firewall it gose to higher than layer 3 and 4 and start inspect application layer

statful inspection means

if u put deny any on the outside interface

and u have a client from the inside opened a connection lets say http

in normal cases like a router with deny all on the outside interface the packet will go out once it comes back from the http server will be denied because there is deny all

while with statefull inspection with ASA there a table that the ASA build it called state table this table keeps track of conection started from outside then it will allow the returne traffic for that connection in the state table

becuase TCP is staeful the ASA can keep track of the syn synack and tcp sequence and at the same time ASA dose not proxy but randumize that sequence number for security to prevent any hucker to insert packet between the sequenced number

with udp it use a timer for the connection which timeout the connection if take longer time

if helpful Rate

0 Helpful

carl_townshend
Spotlight
Spotlight
In response to Marwan ALshawi

‎08-27-2008 07:21 AM

hi there, in my cisco training notes, it says the asa acts as a proxy server, why does it say that?

0 Helpful

Marwan ALshawi
VIP Alumni
VIP Alumni
In response to carl_townshend

‎08-27-2008 03:09 PM

it act like but not exactly

because with nating

the connection will apear to the outtside as from the ASA not from the client behind it

also wit the newer version of ASA there is cacheing capabilities so it is to smoe extent a proxy too

if helpful rate

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card