Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
951
Views
5
Helpful
2
Replies

Firepower Application/URL Access Control Rules

Go to solution
rayelkin
Cisco Employee
Cisco Employee

‎03-19-2019 07:28 PM - edited ‎02-21-2020 08:57 AM

Firepower gurus:

 

Looking for input on two questions I received from a Firepower sys admin:

  1. Is there a way to block ALL uploads in one line?  Does this capability exist?
  2. Does a website or application that other Firepower users have posted combinations of URL/application rules to achieve particular results exist?  A communal recipe book as it were.
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
rayelkin
Cisco Employee
Cisco Employee
In response to Marvin Rhoads

‎04-15-2019 09:01 AM

Awesome! Thank you.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎03-20-2019 12:38 AM - edited ‎03-20-2019 12:40 AM

You can block all files that Firepower is capable of detecting. Use something like this as your file policy rule:

File Policy to Block All.PNG

But users would still be able to upload, for instance, using https (ssl/tls) because you are mostly likely not decrypting outbound ssl/tls.

Re your second question, there are some good ideas here:

http://cisco.lookbookhq.com/ngfw_ftd_common-practices/ftd-common-practices

Go to solution
rayelkin
Cisco Employee
Cisco Employee
In response to Marvin Rhoads

‎04-15-2019 09:01 AM

Awesome! Thank you.
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card