We have NAC 4.1.8 OOB deployment installed and a rule to check whether kaspersky is installed in users before giving them access to the network. That's working fine.
Now I want to check whether kaspersky is actually running on the user machine or not. (kaspersky can be installed but disabled) This condition is not checked by the AV_installed rules. (even when kaspersky is disabled, users are given access to the network)
well, the problem is even if we disable kaspersky, the kaspersky service is still running. Now if we are checking the only the existence of the service, NAC would still allow the users with disabled kaspersky, in to the network.
So we need a different mechanism than the service check
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...