Solved: Re: File Scanning for SFTP

lm20ele · ‎09-14-2021

Hello,

Is it possible to build a file malware policy for a SFTP communication?

I am able to see only FTP, HTTP and other protocols but not SFTP.

Thanks

Mohammed al Baqari · ‎09-14-2021

Hi,

You can't inspect SFTP traffic. The decryption policy supports HTTPs only,
i.e. we can decrypt HTTPs to HTTP only and inspect it. For SFTP, it can't
be decrypted by firepower.

***** please remember to rate useful posts

View solution in original post

Mohammed al Baqari · ‎09-14-2021

Hi,

You can't inspect SFTP traffic. The decryption policy supports HTTPs only,
i.e. we can decrypt HTTPs to HTTP only and inspect it. For SFTP, it can't
be decrypted by firepower.

***** please remember to rate useful posts

FMC File Scanning for SFTP Policy

FTD/FMC: TS file(Troubleshooting file) の作成・取得の方法

FMC: Policy File の Import/Export 方法について

Export Cisco FMC Intrusion Policy: A Step-by-Step Guide

FMC/FTD Policy Migration

FMC Policy Export