Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
848
Views
0
Helpful
1
Replies

Is that posible to inspect RDP on ASA5585-X

Krasnoperov
Level 1
Level 1

‎05-07-2013 06:52 AM

user from home PC via Anyconnect making RDP session to work PC, on this PC Microsoft policy allow making disk mappind via RDP. Is that posible to inspect this traffic and deny this(disk mapping) action on ASA5585-X with IPS?

Labels:
0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎05-07-2013 09:07 AM

Unfortunately RDP is not among the supported application inspection types. (Reference)

You'd have to identify something unique to those TCP sessions and key on that to prevent it. If it's indeed all tcp 3389 and you only want to disallow the disk mapping feature but not all RDP, it may not be possible with ASA and IPS alone. It'd be more a job for something like CX or WSA.

0 Helpful
Customers Also Viewed These Support Documents