Divert ASA self originated traffic to SSMs

Answered Question
Feb 17th, 2009
User Badges:

Does anybody know if it is possible to divert self originated traffic to an AIP-SSM or a CSC-SSM?

I want FTP and HTTP sessions coming out of a WebVPN session and going to an internal server be scanned by a CSC-SSM. As the WebVPN session gets terminated on the ASA, the resulting access to the FTP server is, as far as I know, a self originating session. Can this traffic be diverted to the SSM for scanning?

Does such a scenario work?

Correct Answer by Yudong Wu about 8 years 5 months ago

based on release notes, it should be supported since 7.2.


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)


This Discussion