Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4087
Views
2
Helpful
6
Replies

Firepower - Geoblocking countries

Go to solution
Humongous
Level 1
Level 1

‎09-30-2019 11:51 AM

I geoblock traffic from most countries.  I have run into a few websites that my clients need access to but are located in one of the blocked countries.  Is there a way to allow these websites through AND continue to block other traffic from the country w/o having to purchase the URL Filtering license from Cisco?  Thanks in advance!

 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎09-30-2019 06:01 PM - edited ‎09-21-2024 08:46 PM

If you want to take any policy action (monitor, block, allow by exception, etc.) for individual URL categories/reputations then you need the URL Filtering licensing.

(2024-09-21: edited for accuracy - hand coded individual URLs do not require the additional license.)

View solution in original post

0 Helpful
6 Replies 6

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎09-30-2019 06:01 PM - edited ‎09-21-2024 08:46 PM

If you want to take any policy action (monitor, block, allow by exception, etc.) for individual URL categories/reputations then you need the URL Filtering licensing.

(2024-09-21: edited for accuracy - hand coded individual URLs do not require the additional license.)

0 Helpful

Go to solution
Humongous
Level 1
Level 1
In response to Marvin Rhoads

‎10-01-2019 06:33 AM

That is what I thought - just wanted to verify - thanks!

0 Helpful

Go to solution
bstewart
Level 1
Level 1
In response to Humongous

‎01-20-2021 12:05 PM

Were you trying to allow a specific URL (http://example.com/thing1.html) or just the site (example.com or 150.234.210.205)?

The latter shouldn't take a URL filtering license; the Security Intelligence whitelist/blocklist can handle that.

(I realize this was a year and a half ago...)

0 Helpful

Go to solution
Ty Rost
Cisco Employee
Cisco Employee

‎09-20-2024 10:16 AM

This post is a bit older, but the solution is not correct. Manual URL filtering by use of URL groups and objects does not require a URL license. "Without a URL Filtering license, you can specify individual URLs or groups of URLs to allow or block. This option gives you granular, custom control over web traffic, but does not allow you to use URL category and reputation data to filter network traffic."

https://www.cisco.com/c/en/us/td/docs/security/secure-firewall/management-center/admin/740/management-center-admin-74/system-licenses.html#reference_0FB126619D0649D79B4F666AACE82BAD

0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to Ty Rost

‎09-20-2024 10:19 AM

You are correct @Ty Rost - I should have added "categories".

I edited my post to reflect that correction

Go to solution
Ty Rost
Cisco Employee
Cisco Employee
In response to Marvin Rhoads

‎09-20-2024 11:01 AM

Categories and reputation.   

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card