This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

INSPECTING THE TRAFFIC

HI.

Is there any possible way to inspect traffic for non-standard ports eg. 8443, 990... Im using some service on given ports and i was trying to test AV if its gonna to block that file which i was trying to send. I was disapointed traffic went without any problem(no inspection i guess). Is there any clue on it ?

Traffic comes from WAN and goes to LAN-> ftp/https server ports 990/8443.

in the fw rules security features are sets.

This thread was automatically locked due to age.

Parents

0 LuCar Toni over 4 years ago

Is the Stream of 990 / 8443 encrypted or not?

I would assume, it is.

You need V18 with SSLx do actually decrypt this traffic to have a chance to scan something.

__________________________________________________________________________________________________________________
Cancel
Vote Up 0 Vote Down

Cancel
0 Regex over 4 years ago in reply to LuCar Toni

indeed it is :) Im using SSL for my services.

but i have no idea how to set it up to decrypt it in v18 ^^ i hope u will help me somehow.

But i did some changes and malware was succesfully blocked. In the Security section i have chosen "WEB PROXY SCAN"

but if this a proper way ?.

__________SETUP___________

HP Small Form Factor: i5 4Cores, 8Gb of RAM.
Intel Network Card 5x Eth
SSD: 256Gb
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 Regex over 4 years ago in reply to LuCar Toni

indeed it is :) Im using SSL for my services.

but i have no idea how to set it up to decrypt it in v18 ^^ i hope u will help me somehow.

But i did some changes and malware was succesfully blocked. In the Security section i have chosen "WEB PROXY SCAN"

but if this a proper way ?.

__________SETUP___________

HP Small Form Factor: i5 4Cores, 8Gb of RAM.
Intel Network Card 5x Eth
SSD: 256Gb
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data