how to change the default servcie port number to be checked for the IPS sig

Unanswered Question

Dear

i have an AIP-SSM (IPS) installed in a an ASA firewall.

i have configured an access-list in the firewall to forward the traffic coming from the internet toward the internal server to be checked by the IPS module.

but the case is that the services have to be checked is not the default services port numbers.

http port is 8081

oracle port is 2006

and many other services.

the question now, is how to change the default service number in the IPS in order to be checked by the corresponding service signatures?

Thanks

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
rhermes Tue, 07/28/2009 - 07:32

If you can't set a variable for the RDP port number, then your alternative is to copy the existing RDP signatures to custom (60000 and above) signatures and change the port number on them.

Actions

This Discussion