Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 

Autonomous antenna and WebSense

Hi,

I have the following scenario:

Core Cisco 3750G (12.2.25SEC) with port monitoring for the WebSense network monitor port (source firewall inside interface, destination WebSense NM)

ASA 5520 8.2.2 correctly configured with url-filtering for WebSense on inside interface

Clients on the internal LAN in 10.0.0.0/24 network vlan 1.

Wired clients have been working fine for a while now, but I just added an autonomous 1142N access point with the latest IOS 12.4(25d)JA1

I configured the antenna with mutliple VLANs and SSIDs and authentication works fine for all of them. The problem is that I do not receive the WebSense redirect page when I connect to the wireless networks

https://web_sense_ip:...

I am redirected when I connect via Ethernet to the core...

I know websense doesn't like seeing the vlan tags so I changed the antenna to be in VLAN 1 (10.0.0.0/24) and its switch port to access mode.

Still the same problem. WebSense does not redirect to its login page and sites are allowed. At the same time, wired clients still work fine!

The firewall inside interface is trunked but the users (wired and wireless) are on the same native vlan:

ASA internal interface:

interface eth0/1

nameif inside

ip addr 10.0.0.1 255.255.255.0

interface eth0/1.112

nameif guest

ip addr ...

SW interface with ASA:

int gi 1/0/24

switch trunk encaps dot1q

switch mode trunk

switch trunk native vlan 1

switch trunk allowed vlan 1,112

end

monitor session 1 source interface Gi1/0/24

monitor session 1 destination interface Gi2/0/15 (websense)

Any ideas?

Thanks,

Patrick Moubarak

396
Views
0
Helpful
0
Replies
CreatePlease to create content