cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

333
Views
0
Helpful
0
Replies

CMD Telnet Command bypass AC Deny Rule

Hello guys,

I have weird situation. I have configured Permit Policy with particular URL for specific host and Deny Any Outside for same host. Problem is in client i can open the URL with browsers and everything else is denied. But in CMD or PS if i try for example "telnet ANY DN 443/80/22 and etc. It is passed. I do not see the connection in connection events. In FTD from system support trace i see URL pending which means Snort is waiting for URL still but connection is established from cmd. It confused me a bit.

Any help for explanation of this situation welcomed

 

Thanks in advance!

Everyone's tags (6)