Unanswered Question
Jul 6th, 2010
User Badges:

Hi guys,

I'm at a customers site doing some unrelated work and noticed that they have an ASA 5520 used solely for VPN connections. In this they have a CSC SSM module to, I assume, stop remote users with infected computers. He had set it up using the CSC wizard.

Now too my question: does this actually provide any security at all? From what I can gather in the logs it doesn't do anything at all. Maybe it's just lack of proper configuration?

I'm not at all familiar with the CSC SSM, so I'm turning to you in hope for some clarification.


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Marcin Latosiewicz Tue, 07/06/2010 - 06:46
User Badges:
  • Cisco Employee,


CSC is device intended to take care of verious threats on the Internet and enforce policy (like no porn browsing during workhours) aaaand protoct your email server from spam.

Much more of course but this is it in a shell.

It has barely any capabilities to protect users connecting over VPN, unless they users do a u-turn on the ASA with the CSC module to go to the Internet.

CSC is not an IPS device - it's more of antivirus on the wire :-)



This Discussion