topic Deep Packet Inspection in Network Security

Deep Packet Inspection

toms001199 — Tue, 12 Mar 2019 05:44:34 GMT

If deep packet inspection "sees" personal identifying information in a packet(SS#, Bank account information, etc.), does it log the information in clear text, does it replace with other characters, does it remove it form the log? Thanks in advance.

Well I am pretty sure the

ryancisco01 — Wed, 08 Apr 2015 02:01:14 GMT

Well I am pretty sure the answer is no. However I am not sure when you refer to logging the information, logging to where?

If you mean to an external syslog server then no, it wont send the payload just the header information.

Also the ASA doesn't support DLP by default either, so it wont have any clue as to what is sensitive data and what is not.

The administrator could mirror all traffic from a firewall out to a forensic server to look at all that kind of info though if they wanted to, and the Cisco would forward it out exactly as it was transmitted it would not obscure anything.

Thanks. That answers my

toms001199 — Wed, 08 Apr 2015 16:07:56 GMT

Thanks. That answers my question. I appreciate it.