Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
258
Views
0
Helpful
1
Replies

Using an ASA's AIP SSM module to inspect traffic going into and coming out

dnash
Level 1
Level 1

‎01-22-2009 09:26 AM - edited ‎03-11-2019 07:40 AM

I am having trouble inspecting network traffic on an ASA that is being

<br />used as a VPN Concentrator. Based on some documentation I have

<br />recently come upon it eludes that this may not even be possible based

<br />on the fact the logical inspection point in the ASA is sandwiched

<br />between the firewall policy and VPN policy.

<br />

<br />I guess my question is whether the ASA with AIP SSM is even capable of

<br />doing what I would like to do and if it is could you point towards any

<br />specific documentation that covers this configuration.

<br />

<br />Thanks in advance for the responses.

Labels:
0 Helpful
1 Reply 1

Fernando_Meza
Level 7
Level 7

‎01-31-2009 03:54 AM

Hi,

This is definetely possible ..  I have done it several times.  I suggest o check this link which will give you an idea of what you need to do.

http://www.cisco.com/en/US/docs/security/ips/5.0/configuration/guide/cli/clissm.html#wp1030972

I hope it helps  ..  please rate helpful posts

 

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card