I have a Cisco 5506X ASA with firepower fully licensed. I have URL filtering category Pornography/Adult any reputation set to block. Now some porn websites get blocked but some don't. When I'm in the ASDM looking at the monitoring of live connections I see the porn website that went through and it says its un-categorized. I went to the bright cloud url reputation website and it classifies this website as Pornography/Adult.
So my question is why would the ASA be classifying this website us unknown?
Any thoughts I'd appreciate it.
Can you check under System->configuration ->cloud services (on version 5.4)
if the option "query cloud for unknown urls" is enabled or not .
if version 6.0 then go to System->Integration->Cisco CSI->
for same option.
if it is disabled then enable it and save it and check if issue occurs again.
rate if it helps.
When you say manually update the database I have unticked Cisco CSI box saved then renabled. Is this the correct way to manually update the database?
I ended up opening a TAC request and the engineer identified it as a bug. Apparently this will be fixed in the next release of software. The TAC engineer ran a script to fix the issues in the mean time.
Here's the link for the bug: