Re: Cisco FTD URL filtering Issue

telesymbol · ‎06-03-2022

Dear All,

we've installed two 2130 FTDs in HA, managed with FMCv, we've configured a rule to allow some users with gmail and ooutlook.com email providers. on the URL tab we've listed google.com and outlook.com. users get the Gmail home page but can not login and outlook.com does not respond. please advise on the issue.

regards

Herald Sison · ‎06-06-2022

Whats is the arrangement of your access control rule from top to bottom?

allow

block

or

block

allow

if you can provide screenshot much better if you dont mind

telesymbol · ‎06-20-2022

Hi All,

please see attached logs here and advise on the issue.

Regards

Marvin Rhoads · ‎06-20-2022

The debugs show it failing due to no allow rules on gstatic.com and office.net URLs. The services you're trying to allow use a number of URLs and domains. Simply allowing the service's home page does not cover the full set of places the client needs to connect to in order to make it work. Have you considered using application matching instead of URL filtering?