ssl and ssh inspection

Author
sims
Gold Member
  • Total Posts : 121
  • Scores: 0
  • Reward points: 0
  • Joined: 2014/06/09 03:26:11
  • Status: offline
2019/10/08 00:46:17 (permalink)
0

ssl and ssh inspection

Hi,
How to disable ssl inspection and keep only AV and IPS
 

 
Thanks

Attached Image(s)

#1

2 Replies Related Threads

    Elthon Abreu
    Bronze Member
    • Total Posts : 50
    • Scores: 2
    • Reward points: 0
    • Joined: 2014/04/29 11:37:55
    • Location: Brazil
    • Status: offline
    Re: ssl and ssh inspection 2019/10/08 07:07:43 (permalink)

    Elthon Abreu
    FCNSA v5
    #2
    emnoc
    Expert Member
    • Total Posts : 5301
    • Scores: 347
    • Reward points: 0
    • Joined: 2008/03/20 13:30:33
    • Location: AUSTIN TX AREA
    • Status: online
    Re: ssl and ssh inspection 2019/10/08 09:21:26 (permalink)
    0
    I would advise not todo that. Since most of the current traffic is web and HTTPS, with ssl-inspection disable and AV/IPS you will not detect any AV attacks since you can inspect the payload. Disabling ssl-inspection will hamper your security inspection and you risk exposure to these attacks. Just my 2ct opinion from a security analyst perspective
     
    Ken Felix

    PCNSE,  NSE , Forcepoint ,  StrongSwan Specialist
    #3
    Jump to:
    © 2019 APG vNext Commercial Version 5.5