SSH DPI
You can use the SSH Deep Packet Inspection ("SSHDPI") feature
to decrypt and encrypt SSH traffic and let the Threat Prevention
solution protect against advanced threats, bots, and other malware.
The SSH Deep Packet Inspection (DPI) was integrated as part of
the Quantum Spark alignment to R81.10, starting in R81.10.05.
With SSH DPI you can:
n
Block SSH attacks
n
Block the transmission of viruses through SFTP protocols.
n
Prevent brute force password cracking of SSH/SFTP servers.
n
Prevent the dangerous use of SSH Port forwarding
n
Prevent the use of simple passwords such as "password"
when connecting to SSG/SFTP
n
Prevent the use of vulnerable cryptography
n
Prevent the use of vulnerable SSH clients and servers
n
Prevent the use of port 22 for protocols other than SSH
Note - Currently these blades are supported: Anti-Virus
and IPS.
Important - SSHDPI is disabled by default.
To Next Page
Loading...
