08-25-2008 02:56 AM - last edited on 03-25-2019 05:18 PM by ciscomoderator
Site2Ste VPN's are configured to branche offices. Internet traffic is going through the VPN to the main office. Can the CSC module scan this traffic ?
Regards
Remco
Solved! Go to Solution.
08-25-2008 05:57 AM
If the traffic is decrypted before/ON the ASA, then yes.
Regards
Farrukh
08-25-2008 05:57 AM
If the traffic is decrypted before/ON the ASA, then yes.
Regards
Farrukh
08-26-2008 12:08 AM
The VPN's are connected by the Outside interface. Can you create a rule on the firewall / CSC module to send traffic from the outside interface (VPN's) to the outside interface for scanning ?
08-26-2008 04:20 AM
Please use this link to initalize and send traffic to the CSM, you can use the traffic in your ACL to match the post decrypted IPs.
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00808dea62.shtml#diag
Regards
Farrukh
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: