Cisco Firepower Management Center

mughilbharathi · ‎01-03-2017

How to white-list an IP address in Cisco Firepower Management Center .it is running on VMWare..

Report Inappropriate Content · ‎08-02-2017

Do you already have an access policy? If so, you can create a URL or IP white list rule in your policy in the URL filtering section. If not, you need to finish setting this up. If you use a URL white list policy you can add an IP address in this. Or you can create an object with the IP address and apply it to your policy - I do not think you can change the default white list that is already on the appliance I believe that information comes from TALOS.

There is a little green "+" button in "Available Networks" and you can add an IP in here.

I just named mine URL_Whitelist and set the action to "Allow" and I placed this at the top of the access policy's URL filtering section. Then I added URLs into an object titled "URL_Whitelist" and I placed that object in the rule under the "URLs" tab.

For an IP address you would use the Networks tab instead. Then set your Inspection for your intrusion policy and your variable set. Then set your file policy.

For the "Allow" action you will want to set your logging to "Log at the End of Connection" and I send the connection events to the event viewer.

I am unsure how your firepower management server is setup. If you create your Allow and place it at the top of your URL filtering section of your Access Control Policy, you should be able to get it to work. Even though it is an IP and not a URL.