10-10-2017 11:18 PM - edited 02-21-2020 06:28 AM
Hi,
I need to block Anyconnect Client for some users using Firepower. I found APP in the base "AnyConnect SSL Client" but it doesnt work, firepower cant detect this application and cannot block it.
What's the reason? Is it possible to block Anyconnect?
10-11-2017 08:08 AM
Is your goal to prevent SSL VPN clients from transiting outbound via your network perimeter?
10-11-2017 08:18 AM
I'd like to block AnyConnect only but if it's not possible blocking all the SSL VPN Clients would be ok
10-11-2017 08:30 AM
I checked in my lab and see that Firepower does not identify the AnyConnect application. Instead it only sees the not-very-helpful "SSL Client" and https transport protocol when I establish an SSL VPN using AnyConnect via my FTD device.
It might be worth raising a TAC case as it would seem to be something we should be able to do - I'm just not seeing how at the moment.
10-11-2017 08:35 AM
10-11-2017 08:37 AM
You're welcome.
Please let us know what they tell you - I'm curious to learn it myself now that you've asked.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide