How to Configure a Symantec Critical System Protection (SCSP) Intrusion Prevention System (IPS) Policy to Allow Remote Access via SSH.
|Article:HOWTO59069|||||Created: 2011-08-28|||||Updated: 2011-09-08|||||Article URL http://www.symantec.com/docs/HOWTO59069|
Configuring an SCSP IPS policy to allow remote SSH access.
The SSHD daemon belongs to the process set: int_gateway_ps, but there is no explicit configuration option for this process set. So, the access list must be configured under the following section to solve this issue:
Daemon Options--> Default Daemon Options -->Network Control --> Inbound --> Inbound Network Rules --> List of rules to control connections to this system:
Action Protocol Local Port Remote IP Remote Port
Allow TCP 22 *10.200.21.47 Any(0-65535)
* For this example, the IP address of the remote host is 10.200.21.47. Please replace this IP with the appropriate IP address of the host system you wish to initiate a remote SSH session from.
Article URL http://www.symantec.com/docs/HOWTO59069