Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1819
Views
10
Helpful
1
Replies

allow/deny to specifics url

Go to solution
hoaithanhdo
Level 1
Level 1

‎01-22-2022 07:03 AM

Hello, 

I am using cisco asa 5520 , My manager want to connect https://*.windowsupdate.microsoft.com

I would like to know that this asa can be configured for this goal or not ? 

if it's ok, could you please share to me the best solution . 

Many thanks !

 

Labels:
1 Accepted Solution

Accepted Solutions

Go to solution
Rob Ingram
VIP
VIP

‎01-22-2022 07:21 AM - edited ‎01-22-2022 07:29 AM

@hoaithanhdo if using an ASA you could use an FQDN object, this relies on DNS.

 

More information:

https://www.cisco.com/c/en/us/support/docs/security/adaptive-security-appliance-asa-software/216553-understand-the-working-of-dns-on-asa-whe.html

 

Ideally you should look to upgrade to FTD (or another NGFW), windows update is an application you can select in the firewall policy....amongst other more advanced features that the ASA does not support.

 

View solution in original post

1 Reply 1

Go to solution
Rob Ingram
VIP
VIP

‎01-22-2022 07:21 AM - edited ‎01-22-2022 07:29 AM

@hoaithanhdo if using an ASA you could use an FQDN object, this relies on DNS.

 

More information:

https://www.cisco.com/c/en/us/support/docs/security/adaptive-security-appliance-asa-software/216553-understand-the-working-of-dns-on-asa-whe.html

 

Ideally you should look to upgrade to FTD (or another NGFW), windows update is an application you can select in the firewall policy....amongst other more advanced features that the ASA does not support.

 

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card