https://community.cisco.com/t5/network-security/question-about-cisco-asa-aip-ssm-10/m-p/1859804#M55783 <HTML><HEAD></HEAD><BODY><P>Cisco IPS is able to detect and block web-server and other application level attacks. You may see web-based signatures in web category in IME/IDM interface or sort by http-related engine. You can also find their descriptions on page </P><P><A class="jive-link-external-small" href="http://tools.cisco.com/security/center/ipshome.x?i=62">http://tools.cisco.com/security/center/ipshome.x?i=62</A></P><P>Documentation says that the most applicable environment for Cisco IPS is corporate network. It was designed for using in it. It doesn't say that Cisco IPS can't protect www/db servers.</P><P>If your main critical task is to make web-servers and databases secure you can analyze usage of such solutions as web application firewalls or database guards. They were designed for web/db protection as a main feature.</P></BODY></HTML> Sun, 25 Dec 2011 20:41:17 GMT andrey.dugin 2011-12-25T20:41:17Z https://community.cisco.com/t5/network-security/question-about-cisco-asa-aip-ssm-10/m-p/1859803#M55782 <P>I am a bit confused about this device and its offering. The documenation doesnt seem to be very clear. </P><P></P><P>My question is will this be able to detect/stop most used Cross Site Scripting, SQL injection and application level attacks? The documenation makes it sound like the SSM is meant to be used in an office network where things AntiVirus, malware detection would be most useful, not in a environemnt that consists of web and database servers.</P> Sun, 10 Mar 2019 12:34:20 GMT https://community.cisco.com/t5/network-security/question-about-cisco-asa-aip-ssm-10/m-p/1859803#M55782 overworkedasian 2019-03-10T12:34:20Z https://community.cisco.com/t5/network-security/question-about-cisco-asa-aip-ssm-10/m-p/1859804#M55783 <HTML><HEAD></HEAD><BODY><P>Cisco IPS is able to detect and block web-server and other application level attacks. You may see web-based signatures in web category in IME/IDM interface or sort by http-related engine. You can also find their descriptions on page </P><P><A class="jive-link-external-small" href="http://tools.cisco.com/security/center/ipshome.x?i=62">http://tools.cisco.com/security/center/ipshome.x?i=62</A></P><P>Documentation says that the most applicable environment for Cisco IPS is corporate network. It was designed for using in it. It doesn't say that Cisco IPS can't protect www/db servers.</P><P>If your main critical task is to make web-servers and databases secure you can analyze usage of such solutions as web application firewalls or database guards. They were designed for web/db protection as a main feature.</P></BODY></HTML> Sun, 25 Dec 2011 20:41:17 GMT https://community.cisco.com/t5/network-security/question-about-cisco-asa-aip-ssm-10/m-p/1859804#M55783 andrey.dugin 2011-12-25T20:41:17Z