How to Configure a Symantec Critical System Protection (SCSP) Intrusion Prevention System (IPS) Policy to Allow Remote Access via SSH.

Article:HOWTO59069  |  Created: 2011-08-28  |  Updated: 2011-09-08  |  Article URL http://www.symantec.com/docs/HOWTO59069
Article Type
How To



Configuring an SCSP IPS policy to allow remote SSH access.
 

The SSHD daemon belongs to the process set: int_gateway_ps, but there is no explicit configuration option for this process set.  So, the access list must be configured under the following section to solve this issue:
 

Daemon Options--> Default Daemon Options -->Network Control --> Inbound --> Inbound Network Rules --> List of rules to control connections to this system:

Action   Protocol     Local Port        Remote IP              Remote Port   
Allow     TCP              22            *10.200.21.47       Any(0-65535)


* For this example, the IP address of the remote host is 10.200.21.47.  Please replace this IP with the appropriate IP address of the host system you wish to initiate a remote SSH session from.
 



Article URL http://www.symantec.com/docs/HOWTO59069


Terms of use for this information are found in Legal Notices