Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
243
Views
0
Helpful
1
Replies

Checking Remote User's Anti Virus and Windows Updates Status

ontariomd
Level 1
Level 1

‎10-12-2005 07:24 AM - edited ‎03-09-2019 12:42 PM

Hi,

We have a ASA5520 with IPS module and I have set it up for IPSec VPN remote access. I was wondering if it is possible to check client PC's anti virus and windows updates to ensure it is reliable enough to connect to our network remotely using VPN client.

All I have found in configuration or documents is about personal firewall and how to use group policies to enforce them ... Any thing similar as pushing and/or verifying AV/Windows updates?

Thanks in advance ...

Labels:
0 Helpful
1 Reply 1

thomas.chen
Level 6
Level 6

‎10-18-2005 01:21 PM

Issue the show crypto ipsec sa command.

Identify your connection entry.

Check the encrypt and decrypt counters.

If you see no decrypts, there could be a firewall and or packet filter device blocking protocols 50 (ESP) or 51 (AH) between the client and the outside PIX interface.

If you see decrypts and no encrypts, there could be a routing issue on the PIX. Verify that there is a default route set on the PIX, and check the routing table on the PIX

0 Helpful
Customers Also Viewed These Support Documents