10-10-2017 11:18 PM - edited 02-21-2020 06:28 AM
Hi,
I need to block Anyconnect Client for some users using Firepower. I found APP in the base "AnyConnect SSL Client" but it doesnt work, firepower cant detect this application and cannot block it.
What's the reason? Is it possible to block Anyconnect?
10-11-2017 08:08 AM
Is your goal to prevent SSL VPN clients from transiting outbound via your network perimeter?
10-11-2017 08:18 AM
I'd like to block AnyConnect only but if it's not possible blocking all the SSL VPN Clients would be ok
10-11-2017 08:30 AM
I checked in my lab and see that Firepower does not identify the AnyConnect application. Instead it only sees the not-very-helpful "SSL Client" and https transport protocol when I establish an SSL VPN using AnyConnect via my FTD device.
It might be worth raising a TAC case as it would seem to be something we should be able to do - I'm just not seeing how at the moment.
10-11-2017 08:35 AM
10-11-2017 08:37 AM
You're welcome.
Please let us know what they tell you - I'm curious to learn it myself now that you've asked.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: