Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
357
Views
0
Helpful
0
Replies

DAP Policy for Firewall Enabled Fails

peter.alliett1
Level 1
Level 1

‎09-29-2023 09:52 AM

Trying to deploy a DAP on a Cisco ASA that checks user's device has firewall enabled.

Problem happens when anything other then Windows Firewall is used.  As 3rd party firewall is enabled but it will show Windows Firewall as disabled and then fail.

This is the EVAL

assert(function()
for k,v in pairs(endpoint.pfw) do
if (EVAL(v.enabled, "EQ", "failed", "string")) then
return true
end
end
return false
end)()

This is the debug output from ASA, as expected ESET in this case is enabled and Windows Firewall is disabled as it should be

Sep 29 12:36:30 EDT: %ASA-dap-7-734003: DAP: User peter.alliett@X.X.X.X, Addr 1.2.3.4: Session Attribute endpoint.pfw["2675"].description="ESET Internet Security"

Sep 29 12:36:30 EDT: %ASA-dap-7-734003: DAP: User peter.alliett@X.X.X.X, Addr 1.2.3.4: Session Attribute endpoint.pfw["2675"].enabled="ok"


Sep 29 12:36:30 EDT: %ASA-dap-7-734003: DAP: User peter.alliett@XXX, Addr 1.2.3.4: Session Attribute endpoint.pfw["283"].description="Windows Firewall"

Sep 29 12:36:30 EDT: %ASA-dap-7-734003: DAP: User peter.alliett@XXX, Addr 1.2.3.4: Session Attribute endpoint.pfw["283"].enabled="failed"

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents