https://community.cisco.com/t5/network-security/csa-4-5-and-sms/m-p/431829#M99308 <HTML><HEAD></HEAD><BODY><P>We also run SMS, and have a File Access Control Rule that allows the Scanwrapper.exe located at @system\CCM\** to prety much do anything it wants.</P><P></P><P>It seems like Scanwrapper.exe is the initiating process that starts SMS off.</P><P></P><P>Hope this helps.</P><P></P><P>Regards</P><P>Brad Foy</P><P></P><P></P><P></P><P></P><P></P><P></P></BODY></HTML> Wed, 08 Jun 2005 04:59:51 GMT nrmdcs 2005-06-08T04:59:51Z https://community.cisco.com/t5/network-security/csa-4-5-and-sms/m-p/431825#M99304 <P>Is there a way in the new CSA 4.5 to allow anything to run on a client PC if it came from a specific server? We have a SMS server that needs to be allowed to run whatever it needs to on all our computers. I saw under system state there is a 'network address ranges' but I'm not sure if this would do it or not. </P> Sun, 10 Mar 2019 09:28:52 GMT https://community.cisco.com/t5/network-security/csa-4-5-and-sms/m-p/431825#M99304 mbarasch 2019-03-10T09:28:52Z https://community.cisco.com/t5/network-security/csa-4-5-and-sms/m-p/431826#M99305 <HTML><HEAD></HEAD><BODY><P>We have specific servers that are allowed to connect to hosts and/or run network services on certain ports and we used the network address ranges to make the exceptions.</P><P></P><P>Hope this helps...</P><P></P><P>Tom</P></BODY></HTML> Mon, 06 Jun 2005 22:55:01 GMT https://community.cisco.com/t5/network-security/csa-4-5-and-sms/m-p/431826#M99305 tsteger1 2005-06-06T22:55:01Z https://community.cisco.com/t5/network-security/csa-4-5-and-sms/m-p/431827#M99306 <HTML><HEAD></HEAD><BODY><P>I was told yesterday that the network address ranges under a System State rule applies to the ip address that's running on the client. Is this correct? I need it to apply to server that is trying to run the application or network service on the PC that has the agent running. </P></BODY></HTML> Tue, 07 Jun 2005 11:41:04 GMT https://community.cisco.com/t5/network-security/csa-4-5-and-sms/m-p/431827#M99306 mbarasch 2005-06-07T11:41:04Z https://community.cisco.com/t5/network-security/csa-4-5-and-sms/m-p/431828#M99307 <HTML><HEAD></HEAD><BODY><P>That's correct but that's not where you would create the rule. </P><P></P><P>The system state sets define when a system is more or less vulnerable or on a particular network, etc...</P><P></P><P>What you need to do is identify what SMS actually does and then create rules to allow it. Then you can limit where the SMS contact comes from if you want to.</P><P></P><P>Tom </P></BODY></HTML> Tue, 07 Jun 2005 23:19:38 GMT https://community.cisco.com/t5/network-security/csa-4-5-and-sms/m-p/431828#M99307 tsteger1 2005-06-07T23:19:38Z https://community.cisco.com/t5/network-security/csa-4-5-and-sms/m-p/431829#M99308 <HTML><HEAD></HEAD><BODY><P>We also run SMS, and have a File Access Control Rule that allows the Scanwrapper.exe located at @system\CCM\** to prety much do anything it wants.</P><P></P><P>It seems like Scanwrapper.exe is the initiating process that starts SMS off.</P><P></P><P>Hope this helps.</P><P></P><P>Regards</P><P>Brad Foy</P><P></P><P></P><P></P><P></P><P></P><P></P></BODY></HTML> Wed, 08 Jun 2005 04:59:51 GMT https://community.cisco.com/t5/network-security/csa-4-5-and-sms/m-p/431829#M99308 nrmdcs 2005-06-08T04:59:51Z