https://community.cisco.com/t5/network-security/firepower-application-url-access-control-rules/m-p/3822462#M925757 <P>Firepower gurus:</P> <P>&nbsp;</P> <P>Looking for input on two questions I received from a Firepower sys admin:</P> <OL> <LI>Is there a way to block ALL uploads in one line?&nbsp; Does this capability exist?</LI> <LI>Does a website or application that other Firepower users have posted combinations of URL/application rules to achieve particular results exist? &nbsp;A communal recipe book as it were.</LI> </OL> Fri, 21 Feb 2020 16:57:57 GMT rayelkin 2020-02-21T16:57:57Z https://community.cisco.com/t5/network-security/firepower-application-url-access-control-rules/m-p/3822462#M925757 <P>Firepower gurus:</P> <P>&nbsp;</P> <P>Looking for input on two questions I received from a Firepower sys admin:</P> <OL> <LI>Is there a way to block ALL uploads in one line?&nbsp; Does this capability exist?</LI> <LI>Does a website or application that other Firepower users have posted combinations of URL/application rules to achieve particular results exist? &nbsp;A communal recipe book as it were.</LI> </OL> Fri, 21 Feb 2020 16:57:57 GMT https://community.cisco.com/t5/network-security/firepower-application-url-access-control-rules/m-p/3822462#M925757 rayelkin 2020-02-21T16:57:57Z https://community.cisco.com/t5/network-security/firepower-application-url-access-control-rules/m-p/3822605#M925758 <P>You can block all files that Firepower is capable of detecting. Use something like this as your file policy rule:</P> <P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="File Policy to Block All.PNG" style="width: 999px;"><img src="https://community.cisco.com/t5/image/serverpage/image-id/32333iD7670788A4E9DBB1/image-size/large?v=v2&amp;px=999" role="button" title="File Policy to Block All.PNG" alt="File Policy to Block All.PNG" /></span></P> <P>But users would still be able to upload, for instance, using https (ssl/tls) because you are mostly likely not decrypting outbound ssl/tls.</P> <P>Re your second question, there are some good ideas here:</P> <P><A href="http://cisco.lookbookhq.com/ngfw_ftd_common-practices/ftd-common-practices" target="_blank">http://cisco.lookbookhq.com/ngfw_ftd_common-practices/ftd-common-practices</A></P> Wed, 20 Mar 2019 07:40:04 GMT https://community.cisco.com/t5/network-security/firepower-application-url-access-control-rules/m-p/3822605#M925758 Marvin Rhoads 2019-03-20T07:40:04Z https://community.cisco.com/t5/network-security/firepower-application-url-access-control-rules/m-p/3838860#M925759 Awesome! Thank you. Mon, 15 Apr 2019 16:01:17 GMT https://community.cisco.com/t5/network-security/firepower-application-url-access-control-rules/m-p/3838860#M925759 rayelkin 2019-04-15T16:01:17Z