I set up secret file transfer protocol but connection fail .
Check all gateway device and NSP doesn't have any deny log . but i set NSP firewall policy to allow.
The SFTP can connect success.
McAfee NSP was default deny SFTP ?
Solved! Go to Solution.
Most likely the Sensor won't be able to inspect the packet because the traffic will be encrypted.
However, you can take packet capture from the Manager and connect the application. If you can find packet details which are unencrypted, the Sensor should be able to see the connection alert if a signature is available.
Regards,
Faizan
Yeah! I am Facing The Same Problem Since Last Three Days and I don't Know How to Fix It. If Anyone Can Help Me Then Please Share Some Solution to Solve it Out.
Hope to Here From You!
Thanks in Advance
Rakesh Chauhan
Is there any specific application you have in mind to be blocked?
For example: if the user tries to transfer the file over DNS, the Sensor can block the initial connection with signature name like 'dns tunnelling'.
Regards,
Faizan
No, just set up a connection .
This connection is using SFTP .
Most likely the Sensor won't be able to inspect the packet because the traffic will be encrypted.
However, you can take packet capture from the Manager and connect the application. If you can find packet details which are unencrypted, the Sensor should be able to see the connection alert if a signature is available.
Regards,
Faizan
Thank you for the information ,
The Secret File Transfer Protocol can use McAfee IPS info collector function to watch packet details ?
Info collector contains process information logs about the manager. Please see the following link to do a packet capture on the Manager.
Regards,
Faizan
Corporate Headquarters
6220 America Center Drive
San Jose, CA 95002 USA