Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

how can the IPS inspect the encrypted packets?

dear experts, hello

i'd like to ask a question about how the IPS can inspect and prevent any atteck in the encrypted packets in some sessions

such as vpn or ssh sessions, is there a technique helping for

that in the IPS?

thanks alot for your help

labib makar

3 REPLIES
Cisco Employee

Re: how can the IPS inspect the encrypted packets?

No, unfortunately you can't inspect encrypted traffic on IPS. Not supported.

New Member

Re: how can the IPS inspect the encrypted packets?

so how can we protect the network from the attakes that come in the vpn tunnelling or ssh channel, for example?

thanks for your reply

labib

Cisco Employee

Re: how can the IPS inspect the encrypted packets?

Labib;

  For traffic exiting a VPN tunnel, you can place the IPS sensor behind the VPN termination point so it has access to the unencrypted traffic.

  There is not an option to inspect SSL encrypted traffic; you would need to rely on a host-based system such as Cisco Security Agent to assist in providing such protection.

Scott

486
Views
0
Helpful
3
Replies
CreatePlease to create content