Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1655
Views
0
Helpful
1
Replies

FIREPOWER not blocking hotspot shield

touran ras
Level 1
Level 1

‎03-08-2018 12:09 AM - edited ‎02-21-2020 07:29 AM

HELLO EVERYBODY,

 

My FIREPOWER doesn't block the application hotspot shield. Can you help please?

2 people had this problem
Labels:
0 Helpful
1 Reply 1

argrullo
Cisco Employee
Cisco Employee

‎03-08-2018 06:08 AM

Hello Touran,

 

So I tested the application with the following parameter.

vFMC 6.2.2.2

vFTD 6.2.2.2

SSL Policy enabled, decrypt and resign for port 443

VDB 294

A ACE to block HotSpot Shield.

With the following settings above, i was able to Block the application, see the following pics below

 

 

Hotspot 1.png

 

Hotspot 2.pngHotspot 3.png

 

But then when I turned off the SSL Policy, the application worked as expected. The issue is that the traffic happening in the application is encrypted, thus we need the traffic decrypted so the application can be properly identified.

Hotspot 4.png

 

I hope this helps.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card