How to Configure a Critical System Protection (CSP) Intrusion Prevention System (IPS) Policy to Allow Remote Access via SSH.

Article Id: 180659
Status: Published
Updated On: 30-05-2019 22:12
Legacy Id: HOWTO59069
Products:
Critical System Protection , Data Center Security Server , Data Center Security Server Advanced
Issue/Introduction:

 

Resolution:

Configuring an SCSP IPS policy to allow remote SSH access.
 

The SSHD daemon belongs to the process set: int_gateway_ps, but there is no explicit configuration option for this process set.  So, the access list must be configured under the following section to solve this issue:

Daemon Options--> Default Daemon Options -->Network Control --> Inbound --> Inbound Network Rules --> List of rules to control connections to this system:

Action   Protocol     Local Port        Remote IP              Remote Port   
Allow     TCP              22            *10.200.21.47       Any(0-65535)

* For this example, the IP address of the remote host is 10.200.21.47.  Please replace this IP with the appropriate IP address of the host system you wish to initiate a remote SSH session from.