Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
368
Views
0
Helpful
1
Replies

IPS with HTTPS traffic

support
Level 1
Level 1

‎07-01-2008 12:22 PM - edited ‎03-10-2019 04:10 AM

Hi,

Is there a way, if I have the private key for an SSL certificate , that I can load this into the ASA with an AIP SSM module and be able to see if there attacks over SSL to one of my web servers?

Thanks,

Brantley

Labels:
0 Helpful
1 Reply 1

mhellman
Level 7
Level 7

‎07-01-2008 02:00 PM

The short answer is no. Obviously, HIDS is one option. If you really need network IPS (i.e. inline protection), I think your options are pretty limited if you actually want to load private keys on the device. Googling returns only a McAfee product, but there may be others. Breach.com has a product that does this but it's not inline and not ips.

You can possibly solve this architecturally by putting reverse proxies out in front of your web servers and having SSL terminate there.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card