Guest

Preview Tool

Cisco Bug: CSCup65476 - Client IP based auth exempt does not work for SOCKS with XFF enabled

Last Modified

Jan 27, 2017

Products (1)

  • Cisco Web Security Appliance

Known Affected Releases

7.7.0-725 8.0.5-075 8.0.6-000 8.0.7-000 8.1.0-000 8.5.0-000

Description (partial)

Symptom:
IP address based Identities are not matched for SOCKS connections when the option for "Identification of Client IP Addresses using X-Forwarded-For" is enabled

Conditions:
(1) WSA configured to use the option - Identification of Client IP Addresses using X-Forwarded-For
(2) SOCKS connections are configured to be exempted from authentication based on IP addresses
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.