Cisco IPS ASA-SSM Module

Unanswered Question
Mar 28th, 2007

Hi,

I have configured a Cisco ASA-SSM IPS module in a Cisco ASA 5510, and am having issues whereby users on the inside can initiate a VPN session to an outside host, but cannot bring up an RDP session within the VPN session. When I remove the IPS inspection, it works fine. Has anyone come across anything similar before?

Thanks

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
jeremyarcher Wed, 04/04/2007 - 18:28

goulin,

Have you checked the event list on the IPS to see if it is hitting a signature? If it is, you can disable that or tune it so it allows the traffic.

goulin Wed, 04/04/2007 - 19:13

Jeremy,

Yes I have... there is nothing in the Event Log that is being blocked, I only get some UDP Flood adn TCP Flood messages, but they're not blocks from what I can gather, and even when I disable these signatures, I still have the same issue.

Actions

This Discussion