Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
813
Views
0
Helpful
3
Replies

https scanning through IPS

vikasgupta2k
Level 1
Level 1

‎04-29-2010 08:40 AM - edited ‎03-10-2019 04:58 AM

Is it possible to scan all the https traffic passing through AIP module installed on ASA (inbound and outbound)?

Labels:
0 Helpful
3 Replies 3

Federico Coto Fajardo
VIP Alumni
VIP Alumni

‎04-29-2010 08:44 AM

Hi,

You can inspect the HTTPS traffic passing through the IPS module on the ASA.

But you need to know that since HTTPS is encrypted, the IPS will not be able to ''read'' the contents of the packet.

So, you can monitor the behavior of the HTTPS traffic, and so on, but you cannot decrypt and obtain the original content (data) of the packets.

Federico.

0 Helpful

vikasgupta2k
Level 1
Level 1
In response to Federico Coto Fajardo

‎04-29-2010 08:46 AM

Is there any formal documentation from Cisco on this that I can present to the customer?

0 Helpful

Federico Coto Fajardo
VIP Alumni
VIP Alumni
In response to vikasgupta2k

‎04-29-2010 09:10 AM

I'm not sure that I've seen a document.

It's the same with any cryptographic protocol (HTTPS, SSH, ISAKMP, SFTP, etc.)

Anything that goes encrypted can't be ''read'' since you would have to be able to decrypted prior to sending the traffic to the IPS for scanning.

Federico.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card