Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
581
Views
0
Helpful
1
Replies

Cisco Firework 1120 - FQDN Resolution

tainarapedrosa
Level 1
Level 1

‎10-03-2023 04:52 PM

Hey guys,

I have a client that has deployed Cisco Firework 1120 in its environment. We're implementing a SaaS solution in their environment, which must have incoming traffic released by the FQDN. There's a limitation because it works with packet filtering, that's, based on IPs. Is there any way to perform resolution by FQDN to filter traffic through access control rules or pre-filter policy? A firmware update, for example?
I found these two technical notes, but I don't know if they cover the model they have. Can you help me, please?

https://www.cisco.com/c/en/us/support/docs/security/firepower-management-center/214505-configure-fqdn-based-object-for-access-c.html

https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw/214698-understand-fqdn-feature-on-firepower-thr.html

They even opened a ticket directly with support, but I don't know if they effectively explained the need.

Thank you =]

0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎10-03-2023 07:18 PM

Yes, using FQDNs in an ACL is fully supported as of release 6.3 - which is quite old by now (first released in March 2020).

The Firepower 1120 requires a minimum of release 6.4 just to operate. 7.2.5 is the current recommended release.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card