07-27-2009 02:31 AM - edited 03-10-2019 04:42 AM
Dear
i have an AIP-SSM (IPS) installed in a an ASA firewall.
i have configured an access-list in the firewall to forward the traffic coming from the internet toward the internal server to be checked by the IPS module.
but the case is that the services have to be checked is not the default services port numbers.
http port is 8081
oracle port is 2006
and many other services.
the question now, is how to change the default service number in the IPS in order to be checked by the corresponding service signatures?
Thanks
07-27-2009 07:54 AM
You would set those as part of the signature variables.
07-27-2009 10:26 PM
Dear Sir
thank you for your reply.
but can i use the signature variables to add a variable ports for other services than WEB Ports.
i mean that i want to add a variable service for another remote desktop port (5555). is this possible?
Thanks
07-28-2009 07:32 AM
If you can't set a variable for the RDP port number, then your alternative is to copy the existing RDP signatures to custom (60000 and above) signatures and change the port number on them.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide