Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
797
Views
0
Helpful
1
Replies

Hi Can anyone explain how IPS works in ASA firewalls and SSL/IPSEC VPN configurations?

Pradeep S.R.
Level 5
Level 5

‎09-04-2012 04:53 AM - edited ‎03-11-2019 04:49 PM

Hi..

       Hi Can anyone explain how IPS works in ASA firewalls and SSL/IPSEC VPN configurations?

Labels:
0 Helpful
1 Reply 1

Karsten Iwen
VIP
VIP

‎09-04-2012 04:59 AM

You have to distinguish three scenarios:

1) IPSec/SSL through the ASA with the IPS-module

The IPS can not look into the encrypted traffic, but can analyse the cleartext-headers for attacks. To inspect the payload you need an IPS-apliance that sits behind the VPN-termination-point.

2) IPSec and SSL-VPNs (tunneled) that are terminated on the ASA

This traffic can be inspected by the IPS-module in the ASA.

3) clientless SSL terminated on the ASA

This traffic is not inspected by the IPS-module in the ASA.

-- 
Don't stop after you've improved your network! Improve the world by lending money to the working poor:
http://www.kiva.org/invitedby/karsteni

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card