1369
Views
0
Helpful
1
Replies
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
09-14-2021 04:03 PM - edited 09-14-2021 04:25 PM
Hello,
Is it possible to build a file malware policy for a SFTP communication?
I am able to see only FTP, HTTP and other protocols but not SFTP.
Thanks
Solved! Go to Solution.
Labels:
1 Accepted Solution
Accepted Solutions
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
09-14-2021 11:02 PM
Hi,
You can't inspect SFTP traffic. The decryption policy supports HTTPs only,
i.e. we can decrypt HTTPs to HTTP only and inspect it. For SFTP, it can't
be decrypted by firepower.
***** please remember to rate useful posts
You can't inspect SFTP traffic. The decryption policy supports HTTPs only,
i.e. we can decrypt HTTPs to HTTP only and inspect it. For SFTP, it can't
be decrypted by firepower.
***** please remember to rate useful posts
1 Reply 1
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
09-14-2021 11:02 PM
Hi,
You can't inspect SFTP traffic. The decryption policy supports HTTPs only,
i.e. we can decrypt HTTPs to HTTP only and inspect it. For SFTP, it can't
be decrypted by firepower.
***** please remember to rate useful posts
You can't inspect SFTP traffic. The decryption policy supports HTTPs only,
i.e. we can decrypt HTTPs to HTTP only and inspect it. For SFTP, it can't
be decrypted by firepower.
***** please remember to rate useful posts
