Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
645
Views
0
Helpful
2
Replies

Allowing some URL while restricting the Country

charles_nana
Level 1
Level 1

‎02-12-2018 07:58 AM - edited ‎02-21-2020 07:20 AM

Hi,

I have a unique situation with my ASA5516X with Firepower 6.22. I need to block all the traffic from specific Geo Location while allowing only few know websites from same Geo Location.

To achieve that I created a URL list under

Objects --> Security Intelligence --> URL list and feeds.

Then I added newly created list to the whitelists under

Access Control Policies --> Security Intelligence --> URLs Tab.

But still I cannot access those web sites. Am I doing it correct.

 

Thanks

Charles

Labels:
0 Helpful
2 Replies 2

Marvin Rhoads
Hall of Fame
Hall of Fame

‎02-12-2018 06:51 PM

If the blocked Geo is in your Security Intelligence list it will deny the traffic to the subset that you have allowed in the ACP rule due to order of operations since SI is always evaluated before ACP rules.

0 Helpful

charles_nana
Level 1
Level 1
In response to Marvin Rhoads

‎02-13-2018 05:18 AM

Hi Marvin,

Thanks for your reply. Is there any way other way to do this ? Which will allow me to access identified few sites from a Geo location which is blocked ?

Thanks

Charles

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card