Only authorize HTTP and HTTPS traffic even on non standard ports

Elbrabra — Fri, 21 Feb 2020 17:41:03 GMT

Hello,

We have an ASA with Cisco Firepower and I want to create a rule to only authorize HTTP and HTTPS traffic (without decrypt HTTPS traffic) regardless of the port used (standard or not).

I know ASA can inspect HTTP traffic on non standard port withtout using Firepower module, but for HTTPS it's not supported directly ASA, Firepower must be used.

So this is the rule I want to create for that need:

SOURCE: Network A DESTINATION: Network B Service: HTTP (any port) or HTTPS (any port) Action: Allow

SOURCE: Any DESTINATION: Any Service: Any Action Deny

Do you know if this kind of implementation is possible on Firepower rules ?

Thank for you help,

Regards

Re: Only authorize HTTP and HTTPS traffic even on non standard ports

nspasov — Wed, 13 Nov 2019 19:23:21 GMT

Yes, you can use the Application tab in your Access Control Policy and search for "HTTP" and "HTTPS" under "Available Applications." Firepower will detect those applications without the need of TLS decryption/inspection.

I hope this helps!

Thank you for rating helpful posts!

topic Re: Only authorize HTTP and HTTPS traffic even on non standard ports in Network Security

Only authorize HTTP and HTTPS traffic even on non standard ports

Re: Only authorize HTTP and HTTPS traffic even on non standard ports