Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

IPS with HTTPS traffic

Hi,

Is there a way, if I have the private key for an SSL certificate , that I can load this into the ASA with an AIP SSM module and be able to see if there attacks over SSL to one of my web servers?

Thanks,

Brantley

1 REPLY
Gold

Re: IPS with HTTPS traffic

The short answer is no. Obviously, HIDS is one option. If you really need network IPS (i.e. inline protection), I think your options are pretty limited if you actually want to load private keys on the device. Googling returns only a McAfee product, but there may be others. Breach.com has a product that does this but it's not inline and not ips.

You can possibly solve this architecturally by putting reverse proxies out in front of your web servers and having SSL terminate there.

148
Views
0
Helpful
1
Replies
CreatePlease to create content