Multicontext ASA > single context AIP-SSM

Unanswered Question
Dec 2nd, 2008
User Badges:
  • Gold, 750 points or more

Can I pass traffic from multiple firewall contexts in an ASA to a single context AIP-SSM module in-line mode?

Would that use multiple VLAN pairs to keep the traffic seperate?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.

I think it is possible to send AIP SSM traffic to ASA in inline mode. This mode places the AIP SSM directly in the traffic flow . No traffic that you identified for IPS inspection can continue through the adaptive security appliance without first passing through, and being inspected by, the AIP SSM. This mode is the most secure because every packet that you identify for inspection is analyzed before being allowed through. Also, the AIP SSM can implement a blocking policy on a packet-by-packet basis. This mode, however, can affect throughput.

rhermes Tue, 12/09/2008 - 08:33
User Badges:
  • Gold, 750 points or more

Thank you for taking the time to answer, but I was asking about the use of MULTI-context ASA firewalls. They are multiple virtual firewalls that reside inside the same physical ASA. Can a single context IPS sensor module (AIP-SSM) perform promiscious or in-line inspection on packets to and from multiple virtual firewalls?

Actions

This Discussion