Cisco Cisco ScanSafe Wi-Fi Hotspot Security White Paper
Cisco CWS
– ASA 5500 Deployment Guide
5
Test
Deploy
Prepare
Deploy
Configure ASA connector
This document is intended to provide an overview of the deployment process. For more detailed
information and troubleshooting, please refer to the
information and troubleshooting, please refer to the
Redirect web traffic
The following tutorial will show how to configure an ACL, policy maps, and class maps to identify HTTP
and HTTPS traffic, and how to configure CWS to properly route this traffic to CWS on the ASA. This
section will focus on using the command-line interface due to its simplicity.
and HTTPS traffic, and how to configure CWS to properly route this traffic to CWS on the ASA. This
section will focus on using the command-line interface due to its simplicity.
Be sure to do the following before you begin:
Ensure ASA version 9.0.4 or above, 9.1.5 or above
Record primary and backup tower IP addresses
Create Authentication license key
View ASA training videos:
o
o
o
Command line Overview:
Step 1:
Place all the configuration commands in a text editor.
Step 2:
Configure the scansafe general-options. This is where the primary and backup Cloud
Web Security proxies and the authentication license key are defined.
Figure 2.1
Next are the first two policy maps that define the service types to inspect: HTTP and HTTPS.