Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Question about Cisco ASA AIP SSM-10

I am a bit confused about this device and its offering. The documenation doesnt seem to be very clear.

My question is will this be able to detect/stop most used Cross Site Scripting, SQL injection and application level attacks? The documenation makes it sound like the SSM is meant to be used in an office network where things AntiVirus, malware detection would be most useful, not in a environemnt that consists of web and database servers.

1 REPLY
New Member

Question about Cisco ASA AIP SSM-10

Cisco IPS is able to detect and block web-server and other application level attacks. You may see web-based signatures in web category in IME/IDM interface or sort by http-related engine. You can also find their descriptions on page

http://tools.cisco.com/security/center/ipshome.x?i=62

Documentation says that the most applicable environment for Cisco IPS is corporate network. It was designed for using in it. It doesn't say that Cisco IPS can't protect www/db servers.

If your main critical task is to make web-servers and databases secure you can analyze usage of such solutions as web application firewalls or database guards. They were designed for web/db protection as a main feature.

564
Views
0
Helpful
1
Replies
CreatePlease to create content