Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1243
Views
0
Helpful
0
Replies

VPN traffic getting through firepower services

dan.letkeman
Level 4
Level 4

‎02-15-2016 07:35 PM - edited ‎03-12-2019 05:54 AM

Hello,

I am trying to block vpn/tunnel traffic and finding that no policy is able to block the vpn traffic.  All ports other than TCP port 80 and 443 are blocked for the client by the ASA so the vpn tunnels through port 443.  The access policy I have setup has a rule to block and reset the vpn/tunnel traffic, but it made no difference.  I then enabled an ssl policy to decrypt and resign, and when I go to the browser on the mobile device I get a certificate error, but yet the vpn client continues to pass right through the policy.

Is there any way to troubleshoot a connection like this?

Thanks,

Dan.

1 person had this problem
Labels:
0 Helpful
0 Replies 0
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card