Trend Micro - Securing Your Journey to the Cloud Business
Success
Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Do TippingPoint devices inspect VPN traffic?

    • Updated:
    • 13 Aug 2019
    • Product/Version:
    • TippingPoint IPS N-series All
    • TippingPoint IPS NX-series All
    • TippingPoint IPS S-series All
    • TippingPoint NGFW All
    • TippingPoint TPS All
    • TippingPoint Virtual TPS All
    • Platform:
Summary
A: TippingPoint devices inspect all traffic as long as said traffic is NOT encrypted. Once a VPN tunnel has been established, the traffic flowing thru the tunnel is encrypted so while the IPS cannot inspect the traffic it will attempt to do so thus causing additional load on the system
Details
Public

TippingPoint NGFW devices that are terminating IPsec VPN tunnels, can inspect the traffic within the tunnel. As the VPN traffic is decrypted, the content can be inspected by the device preventing any use of vulnerabilities through client-to-site or site-to-site tunnels. As with the IPS/TPS, encrypted traffic passing through the NGFW cannot be inspected.

Note: It is a recommended best practice to utilize inspection bypass rules to bypass encrypted traffic. This is recommended because the IPS/TPS cannot inspect encrypted traffic and attempting to do so can impact performance and cause unnecessary CPU processing load.

Premium
Internal
Partner
Rating:
Category:
Configure; Troubleshoot; Deploy
Solution Id:
TP000086706
Feedback
Did this article help you?

Thank you for your feedback!

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

This website uses cookies for website functionality and traffic analytics. Our Cookie Notice provides more information and explains how to amend your cookie settings.

Learn More Ok, got it