Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
334
Views
5
Helpful
1
Replies

Stateful inspection over IP tunnel

a.lysyuk
Level 1
Level 1

‎05-15-2003 12:32 AM - edited ‎03-09-2019 03:17 AM

Hello.

Does PIX performs ASA and stateful application inspection on traffic that is going through GRE tunnel.

Our customer want to build IP tunnel through PIX to pass routing information from dmz to inside interface. But I think that it can decrease security by not performing stateful inspection of application through the tunnel. Am I right?

Running routing protocol on PIX our customer don't like, despite PIX allow it.

Any helpful information will be appreciated.

Labels:
0 Helpful
1 Reply 1

gfullage
Cisco Employee
Cisco Employee

‎05-15-2003 08:11 PM

No, the PIX will allow the GRE traffic through if you set it up right, but if there's a TCP session or something similar within that GRE tunnel, then the PIX won't see it.

Customers Also Viewed These Support Documents