1. Home
  2. Cisco Systems
  3. ASA's CSC module not scanning traffic

ASA's CSC module not scanning traffic

hi,

i have an ASA-5520 system running here, featuring the Content Scanning Module (CSC).

the module is up and running, software and subscription registered -- hoever, it doesn't scan emails (esmtp) or http traffic.

policy-map global_policy class inspection_default inspect ftp inspect h323 h225 inspect http inspect rsh inspect rtsp inspect sip inspect skinny inspect sqlnet inspect tftp inspect dns global_dns_map inspect icmp inspect icmp error inspect esmtp ! service-policy global_policy global

AFAICS, this should work. i read all the documentation on this issue, but cannot see the problem.

i appreciate everyone helping getting the tomatoes off my eyes.

wbr,

barney

Reply to
Barney Brunswick
Loading thread data ...

That is the global inspection policy applied to the ASA for all traffic. That is not the CSC's inpsection policy nor is it configured to send to the CSC. There is a link to the learning module how to do this about 1/2way down the page here.

formatting link
Do a search on the page for Anti-X Services

Reply to
Brian V

then cisco should rework their documentation on this; it clearly says that it will scan all traffic by default that your user license covers...

formatting link

thanks, that helped me (not the media itself, but taking some time off its config file =8-).

Reply to
Barney Brunswick

formatting link
>

The "getting started" for the CSC couldn't be clearer. It specifically tells you that you need to divert the traffic from the ASA to the CSC. Maybe you found a different doc? The getting started guides are typically the best for initial setup.

formatting link

Reply to
Brian V

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.