Cisco Systems ASA 5580 Manual De Usuario
25-17
Cisco ASA Series Firewall CLI Configuration Guide
Chapter 25 Configuring the ASA for Cisco Cloud Web Security
Monitoring Cloud Web Security
Monitoring Cloud Web Security
The show scansafe server command shows whether or not the Cloud Web Security proxy servers are
reachable:
reachable:
hostname# show scansafe server
ciscoasa# Primary: proxy197.scansafe.net (72.37.244.115) (REACHABLE)*
ciscoasa# Backup: proxy137.scansafe.net (80.254.152.99)
The show scansafe statistics command shows information about Cloud Web Security activity, such as
the number of connections redirected to the proxy server, the number of current connections being
redirected, and the number of whitelisted connections:
the number of connections redirected to the proxy server, the number of current connections being
redirected, and the number of whitelisted connections:
hostname# show scansafe statistics
Current HTTP sessions : 0
Current HTTPS sessions : 0
Total HTTP Sessions : 0
Total HTTPS Sessions : 0
Total Fail HTTP sessions : 0
Total Fail HTTPS sessions : 0
Total Bytes In : 0 Bytes
Total Bytes Out : 0 Bytes
HTTP session Connect Latency in ms(min/max/avg) : 0/0/0
HTTPS session Connect Latency in ms(min/max/avg) : 0/0/0
The show service policy inspect scansafe command shows the number of connections that are
redirected or whitelisted by a particular policy:
redirected or whitelisted by a particular policy:
hostname(config)# show service-policy inspect scansafe
Global policy:
Service-policy: global_policy
Class-map: inspection_default
Interface inside:
Service-policy: scansafe-pmap
Class-map: scansafe-cmap
Inspect: scansafe p-scansafe fail-open, packet 0, drop 0, reset-drop 0,
v6-fail-close 0
Number of whitelisted connections: 0
Number of connections allowed without scansafe inspection because of "fail-open" config: 0
Number of connections dropped because of "fail-close" config: 0
Number of HTTP connections inspected: 0
Number of HTTPS connections inspected: 0
Number of HTTP connections dropped because of errors: 0
Number of HTTPS connections dropped because of errors: 0
Command
Purpose
show scansafe server
Shows the status of the server, whether it is the current active server, the
backup server, or unreachable.
backup server, or unreachable.
show scansafe statistics
Shows total and current HTTP(S) connections.
show conn scansafe
Shows all Cloud Web Security connections, as noted by the capitol Z flag.
show service policy inspect scansafe
Shows the number of connections that are redirected or white listed by a
particular policy.
particular policy.
See the following URL:
http://Whoami.scansafe.net
From a client, access this web site to determine if your traffic is going to
the Cloud Web Security server.
the Cloud Web Security server.