09-27-2012 04:40 AM - edited 03-11-2019 04:59 PM
Hi all
By default the asa does a default application inspection for certain traffic.
is this inspection only looking for certain port number changes and other embedded ip addresses? I gather it doesnt look for anonimalies etc ?
cheers
Solved! Go to Solution.
09-27-2012 05:13 AM
The answer depends on the protocol you are looking for. Most of the default-inspections just make the protocol work (FTP, Voice-inspections and so on). But some of them look into the packets to make the connection more secure (ESMTP).
Here is some more info on the application-layer inspections:
--
Don't stop after you've improved your network! Improve the world by lending money to the working poor:
http://www.kiva.org/invitedby/karsteni
09-27-2012 05:13 AM
The answer depends on the protocol you are looking for. Most of the default-inspections just make the protocol work (FTP, Voice-inspections and so on). But some of them look into the packets to make the connection more secure (ESMTP).
Here is some more info on the application-layer inspections:
--
Don't stop after you've improved your network! Improve the world by lending money to the working poor:
http://www.kiva.org/invitedby/karsteni
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide