Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
mariuszchlebow
Explorer

IPS without HTTS inspection

Hello,

Is there any document I can follow to understand how IPS works without HTTPS inspection enabled?

0 Kudos
5 Replies
the_rock
Legend
Legend

Hi Marius,

Maybe you can clarify the question...when it comes to IPS, I dont believe functionality changes regardless if https inspection is used or not. Really, say if you dont use inspection, then gateway wont be aware of the content that is going through the ssl encrypted tunnel, thats all.

 

Andy

0 Kudos
JackPrendergast
Advisor
Advisor

Hi Marius,

Threat Prevention blades will scan whatever it can see. Without HTTPS inspection, it will be minimal these days.

Traffic that is subject to scanning via the Threat Prevention blades will traverse the PXL (medium) path eventually.

 

Please use this info for your future studies, or drop a line below for anything else 🙂 

0 Kudos
the_rock
Legend
Legend

I would not agree totally that it would be minimal...it will scan based on whats enabled : )

0 Kudos
mariuszchlebow
Explorer

Hi Jack,

Thank you. Can we say that all what's encrypted will not be matched by application vulnerabilities signatures? CP IPS is only aware of unencrypted application layer and network layer 3/4 behaviour, right?

0 Kudos
MartinTzvetanov
Advisor

correct

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events