topic Re: Next Generation FTD 2110 - Application Filtering Issue in Network Security

Next Generation FTD 2110 - Application Filtering Issue

NetSecNW — Fri, 08 Sep 2023 15:14:00 GMT

I have another issue on a new vFMC & FTD 2110 7.3.1 deployment. It may be an issue with my understanding or not.

I currently have a rule created as below, IP's have been changed.:

Source Destination Ports Applications

1.1.1.1 2.2.2.2 9440 SSL Client

How can I use powershell & Test Netconnection command or telnet to the destination on port 9440 if its only meant to be using an SSL client on an application level?

Re: Next Generation FTD 2110 - Application Filtering Issue

balaji.bandi — Fri, 08 Sep 2023 16:18:48 GMT

SSL Client is build in application on FTD right ? (it check the application related to SSL part of Payload and detects)

example some countries voip block - instead using 5060 port people use port 80 to send voice traffic, if the application detector configured the voice traffic will be dropped based on the conditions mentioned.