How to Configure a Critical System Protection (CSP) Intrusion Prevention System (IPS) Policy to Allow Remote Access via SSH.

book

Article ID: 180659

calendar_today

Updated On:

Products

Critical System Protection Data Center Security Server Data Center Security Server Advanced

Issue/Introduction

 

Resolution

Configuring an SCSP IPS policy to allow remote SSH access.
 

The SSHD daemon belongs to the process set: int_gateway_ps, but there is no explicit configuration option for this process set.  So, the access list must be configured under the following section to solve this issue:

Daemon Options--> Default Daemon Options -->Network Control --> Inbound --> Inbound Network Rules --> List of rules to control connections to this system:

Action   Protocol     Local Port        Remote IP              Remote Port   
Allow     TCP              22            *10.200.21.47       Any(0-65535)

* For this example, the IP address of the remote host is 10.200.21.47.  Please replace this IP with the appropriate IP address of the host system you wish to initiate a remote SSH session from.