06-02-2016 04:54 PM - edited 03-12-2019 12:50 AM
Hi,
I have a Cisco 5506X ASA with firepower fully licensed. I have URL filtering category Pornography/Adult any reputation set to block. Now some porn websites get blocked but some don't. When I'm in the ASDM looking at the monitoring of live connections I see the porn website that went through and it says its un-categorized. I went to the bright cloud url reputation website and it classifies this website as Pornography/Adult.
So my question is why would the ASA be classifying this website us unknown?
Any thoughts I'd appreciate it.
06-03-2016 02:41 AM
Hi Ross,
Can you check under System->configuration ->cloud services (on version 5.4)
if the option "query cloud for unknown urls" is enabled or not .
if version 6.0 then go to System->Integration->Cisco CSI->
for same option.
if it is disabled then enable it and save it and check if issue occurs again.
rate if it helps.
Thanks,
Ankita
06-03-2016 04:29 AM
Hi Antika
I already had this enabled but still no luck. Not sure what else it could be. Maybe time to open a TAC request.
Thanks
06-04-2016 08:55 AM
Have you tried to manually update/refresh the URL filtering database and see if that works?
Thank you for rating helpful posts!
06-04-2016 03:09 PM
When you say manually update the database I have unticked Cisco CSI box saved then renabled. Is this the correct way to manually update the database?
Thanks
06-15-2016 12:45 AM
I ended up opening a TAC request and the engineer identified it as a bug. Apparently this will be fixed in the next release of software. The TAC engineer ran a script to fix the issues in the mean time.
Here's the link for the bug:
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCuy79984/?reffering_site=dumpcr
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide