Configuration of CSC - SSM
From what I've read on the subject the SSM module is that there is a Base license and a license again.
The basic license allows the module SSM basic antivirus/spyware, control over your network. Most
License allows the Base license, most Email Filtering and URL filtering.
So, I guess the only way to block malicious websites and URL filtering is through the SSM?
I guess you could also simply apply ACLs, but the best way would be through the SSM.
If you higher purpose CSC - SSM with license and set up, will be there in no downtime associated with it.
When you pass the traffic that is transferred to the SCC of the ASA instead of just out of the ASA and
to the Internet?
Thanks for your help guys
Hi John,.
I guess the only way to block malicious websites and URL filtering is through the SSM?
I guess you could also simply apply ACLs, but the best way would be through the SSM?
A / as the name says this is a content filtering device, it will apply policies based on what you've set up, on the other hand the IPS - SSM will allow al traffic refusing only those he finds is ilegal so I would say that, Yes, you are right.
If you higher purpose CSC - SSM with license and set up, will be there in no downtime associated with it.
When you pass the traffic that is transferred to the SCC of the ASA instead of just out of the ASA and
to the Internet?
A / without interruption at all, remember to have the SCC of installation above, a policy of relief would be great and finally simply redirect traffic to see it working. As soon as the CSC is running there will be a peace association
Kind regards
Don't forget to note all the useful messages
Julio
Tags: Cisco Security
Similar Questions
-
Dear concern,
I installed CSC-SSM-10 on cisco ASA 5520.
I am facing two problems
Problem 1: When I send traffic from ASA to module SSM then internet connection becomes slow and sometimes internet disconnected session.
2. when I try to manually update and then following erros shows please see attachment.
Please note that I can internet ping of the SCC module. Please suggest me to solve these problems.
Concerning
Imran
Hi Imran,
I'm glad that it works after the correction of the DNS configuration.
To view SCC files-logs, you can use one of the 4 options:
1 look at one of the newspapers > menu query in the Trend Micro admin page (this is a fixed size buffer)
2. manually export logs from the Trend Micro admin page in a CSV file
3. send the logs to a syslog server (Logs > settings)
4. on the tab control of ASDM content security
Hope that helps.
-Mike
-
Question on the CSC - ssm modules and aip - ssm in the ASA5500
Is it true that the CSC - ssm and aip - ssm modules cannot coexist in the device of ASA5500 at the same time?
Another issue is the site of cisco using the command keyword intra-interface involving NO IPSEC TRAFFIC, there are example of config/example
It is true that the CSC - ssm and aip - ssm modules cannot coexist in the device of ASA5500 at the same time.
It is not a sample configuration partitions on the spot yet. However, outside the control of the same security, you must the ordinary rule of translation to pass traffic. Also, because of the dynamic nature, it allows only one-way traffic. For example:
NAT (inside) 10 192.168.1.0 255.255.255.0
Global interface (10 Interior)
Global (ouotside) 10 interface (is not required however)
Sincerely,
~ AJ
-
Could not update the Antivirus model Cisco CSC SSM
I have a Cisco ASA 5520, with Cisco ASA-SSM-CSC-10-K9. ASA version 8.4.3.
Since two days ago, reason for automatic virus protection update for Cisco CSC SSM failed, error message as below:
AntiVirusPattern: Model update: the download file failed for ActiveUpdate could not verify security information. The confidence of information database is damaged. Contact Trend Micro technical support... The error code is 62.
The license is valid and the subscription is expired September 2014.
Any body encountered a similar problem before?
Any body has Trend Micro Cisco CSC SSM helpdesk contact?
I can't find any info Trend Micro for Cisco CSC SSM.
SCC Module tcaps 1144 is available on server Trend Micro safesync:
See
-
Installation of CSC-SSM-20 on ASA5510
Hello
Is it good idea to run a CSC-SSM20 on and ASA5510, and I must have 2 gigabytes of Ram on the ASA5510?
I was wondering too, for filtering of the web. If all Internet users are behind a proxy, the CSC - SSM says that there is only one user.
I would appreciate any advice.
Thank you
.
Hello
There is no specific memory requirements for the installation of module on ASA CSC, CSC does not use the memory of ASA, the only thing he uses is the bottom of basket ASA, so the ASA can redirect internet traffic to CSC management ip for filtering. CSC has its own memory and CPU it uses.
For the second question, if trhe users behind a proxy then definitely the SCC would see demand originating from a single IP address, so you would not be able to filter the traffic at the granular level.
Hope this answer your questions.
Thank you
Varun
-
Hello world.
I went through the CSC - SSM product data sheet at http://www.cisco.com/en/US/prod/collateral/vpndevc/ps6032/ps6094/ps6120/ps6823/product_data_sheet0900aecd80402e4f.html.
In the license product he sai CSC - SSM 20 supports max 1000 users. What does that mean? This means that I can't use CSC - SSM when the number of users is more than 1000? If I'm not correct, what is the maximum number of users I can get behind CSC - SSM 20 so that it works efficintly when all features are enabled?
Thanks in advance
Deepak Khemani
Hi Deepak,
The numbers that you're talking about in the data sheet are a number of IP addresses of the single user inspected by the module. This account is a cumulative over a period of 24 hours. If the license is exceeded, the administrator will be sent an email once per day to inform them of this.
-Mike
-
Cisco CSC - SSM can block https pages?
/ * Style definitions * / table. MsoNormalTable {mso-style-name : « Tabla normal » ; mso-tstyle-rowband-taille : 0 ; mso-tstyle-colband-taille : 0 ; mso-style-noshow:yes ; mso-style-priorité : 99 ; mso-style-qformat:yes ; mso-style-parent : » « ;" mso-rembourrage-alt : 0 à 5.4pt 0 à 5.4pt ; mso-para-marge-top : 0 ; mso-para-marge-droit : 0 ; mso-para-marge-bas : 10.0pt ; mso-para-marge-left : 0 ; ligne-hauteur : 115 % ; mso-pagination : widow-orphelin ; police-taille : 11.0pt ; famille de police : « Calibri », « sans-serif » ; mso-ascii-font-family : Calibri ; mso-ascii-theme-font : minor-latin ; mso-hansi-font-family : Calibri ; mso-hansi-theme-font : minor-latin ; mso-bidi-font-family : « Times New Roman » ; mso-bidi-theme-font : minor-bidi ;}
Hi I m new administers Trend Micro InterScan for Cisco CSC - SSM.
I have blocked access to facebok using filtering Url CSC - SSM (Communication and research/social network management), this present works very well block access to http://www.facebook.com but this morning I noticed that users can access the facebook page using the following URL https://www.facebook.com.
Pouvez Cisco SCS - SSM block/filter HTTPS traffic?
Any ideas to block access to https://www.facebook.com
Thank you.
Hello
Well since the CSC SSM inspects only SMTP, POP3, HTTP, FTP traffic, there is no way to block https using the CSC SSM.
Kind regards
SOM
P.S.: Please check question one answer, if it has been resolved. Note the useful messages. Thank you.
-
Hello
A user ASA 5510 with ASA-SSM-CSC-10-K9 module with more-lic(Spam/URL/Phish), in recent years, he has not renewed the contract Smartnet (CON-SNT-XXXX) and its ASA CSC - SSM module subscription has expired as well.
He now wants to upgrade to subscription CSC - SSM,
(1) upgrade the module CSC - SSM with ASACSC10-50UP1Y (50 users ASA 5500 CSC-SSM-10 w / more Lic.) will solve its purpose or must it also renew CON - SNT as well.
Because according to the Cisco document "" two services are necessary to the proper functioning of the CSC - SSM: Update software and Cisco SMARTnet® service. ""
((2) to renew the contract of Cisco Smartnet, what product it has need to renew the contract for one) would be - for module CSC - SSM -.
("SMARTNET 8X5XNBD ASA content Sec SSM - 10W / Usr 50 AV", or b) for Cisco ASA 5510? or (c) what will be the room code?
((3) at the present time, S/W of CSC - SSM version is 6.3.1172.0, he wants to renew 6.6.1125.0 - a) is this renewal fee? or (b) renewing most Lic / SMARTNet allows for upgrade version as well?
Thanks in advance,
Amit
SMARTnet for the 5510 ASA with CSC is:
CON-SNT-AS1C10K9
SMARTNET 8X5XNBD ASA 5510 Appl w / scc10, SW, 50 Usr AV/Sp.
SMARTnet coverage is a sine qua non for the subscription:
CON-SNT-ASCS10K9
SMARTNET 8X5XNBD ASA content Sec SSM - 10W / Usr 50 AV.
Having these two will allow the user to improve and update.
That said, the 5510 and CSC are ready to go end of sale. IHave you talked about their upgrade to 5512-X with module CX? It is a much more capable solution.
-
-Renewal-license module CSC SSM
Recently, my existing CSC SSM module license expired & I need to know the necessary steps & product ID to renew expired CSC SSM license module hosted on ASA-SSM-20 device:
Tip,
The system was laid off with Base & more license, 500 users.
Yes, it's at the BASE and MORE.
Please check the question as answered if that's the case, so that others can benefit from in the future.
Take care
PK
-
License number of basic CSC SSM
I am registered CSC SSM 10 with cisco.com licenses. I have received no file.when license I wil try to register for the next time it shows error like this
Please correct the errors below and to resubmit the request
We cannot provide a license at this time key. Our records indicate that the product authorization key that was entered during the registration process has yet been used, and a license key has been issued on the following date:
Issue date: March 7, 2008
Please help me solve this problem
You will need a new PAK for registration. Address an alliance with Cisco Tac cases and get the correction key (PAK) and registration.
-
Cisco ASA 5500 CSC-SSM-20 Series
How many subscribers maximum, sessions, licenses are allowed using Cisco ASA 5500 Series CSC-SSM-20 on ASA5540 module
Use the following command 'See - activation key' to get maximum subscribers, sessions, details County licenses.
-
Modules ASA CSC - SSM - any good?
I wonder if anyone has opinions on whether or not this module is recommended from a stand-alone software solution. The environment is 400 users we focus mainly on url filtering, and anti-spam features would be also useful
Thank you
I have worked in several places with this module and it is very easy to use and works very well on small and medium-sized enterprises. The features that it offers are great. The follow-up is not so great, but it shows just the necessary details.
I have also worked with websense and it's generally a better product, but if you already have the ASA and 400 users you can perfectly use the CSC - SSM.
-
Replication of configuration ASA AIP - SSM
People,
The AIP - SSM replicates another AIP - SSM ASA/standby configuration?
I mean, when I change the configuration on the AIP/SSM assets, will change bring replicated to the other AIP - SSM?
Thank you
Yes, unfortunately all the IP addresses are the same. Configuration duplicate automatically 1 unit to another.
Please kindly marks the message as answered if you have any other question. Thank you...
-
Configuration of AIP SSM to monitor only
Hi all
We bought an AIP-SSM-20 for our ASA5520. Is there a way to enable the IPS feature, but not block anything, i.e. just record events? It's just to see if any legitimate business traffic will be blocked.
Thank you!
Jacques
Set the ASA to send traffic to IP addresses in promiscuous mode by using the following command in a sheet of policy:
IPS hostname(config-pmap-c) # {inline | promiscuity} {failure-closing |}
rescue} [sensor {sensor_name | mapped_name}]
http://www.Cisco.com/en/us/docs/security/ASA/asa80/Getting_started/asa5500/quick/guide/aipssm.html
Geroge
-
ASA-SSM-20 on the active failover configuration
You can synchronize configuration between two IPS systems data?
I have two ASA-SSM-20 (6.1.1 E3) one in each of my the SAA. Of the SAA is the shift in assets. During the configuration of the IPS module I always make these same changes also in the standby unit. Is it possible to synchronize to the top of these two survey periods, so when it is configured the other is updated?
Thank you very much
Unlike the SAA, there not an automatic function to preserve the configuration synchronization through SSMs 2.
A few options:
You can use the command copy to copy the configuration of a sensor to a ftp/scp server.
Then use the copy on the second sensor command to copy the configuration on the second sensor. During the copy, it will ask whether to change the IP of the probe to what is in the configuration file. You will need to tell it to NOT change IP of the probe, otherwise you end up with 2 SSMs with the same IP address and are struggling to connect to them.
Another option is to use the CSM. CSM has configuration that applies to simple sensors, but also the group configuration that can be applied across multiple sensors.
If you have used the group configuration, then you could make one change to the configuration of the Group and apply it in all the sensors in the Group (you will place your SSMs 2 in the same group).
Maybe you are looking for
-
How can I remove a server from incoming mail, called my time.
An incoming e-mail account has taken possession of my iPhone 6. How can I get rid of him?
-
Had to give up using Firefox due to the fault of all videos
No video will not play. Not any Youtube or those of KimKomando or other sources. Tried to replace Adobe Flash as well as clear cache etc. - even replace Firefox to previous levels. Nothing helps. Firefox has been my mainstay years so I'm sad that I h
-
HP Pavilion p6604f: upgrade to a semi gaming computer
Operaring system: Windows 7 64-bit Processor: AMD Athlon II X 2 220; 2.8 clocked GHz Memory: 6 GB Video graphics card: using ATI Radeon 4200 integrated graphics HDD: 750 GB Computer case: height: 38.7 cm (15.23 inches), width: 17.5 cm (6.89 in), leng
-
So after I leave this page Firefox will not know that I was never to support.mozilla.com, nor is he knows that I've never been on Facebook, or will he forget not all long URLS which I rely on it for. My story is gone and it will not keep track of my
-
STOR. The SLIM E 2.5 500 GB USB 3.0 SILVER - no access
Dear Toshiba forums, I have an external mass storage device Toshiba (S3600) password protected and has always worked and been a good product. However, my Toshiba laptop recently had a crash of the operating system. It was then fixed and re - establis