02-13-2024 07:22 AM - edited 02-13-2024 07:30 AM
Hi,
We are trying to create a rule to allow outbound sftp, ssh & sql traffic based on URL/hostname but we are not getting any luck. We are seeing the traffic but it is being captured as Application and IP address without any url/hostname information.
I'm wondering if this is only possible on https/http traffic? Any help would be appreciated.
Thanks,
GDS
Solved! Go to Solution.
02-14-2024 08:08 AM
If the intention is to allow traffic based on FQDN/URL/hostname why would traffic be added to an IP Security Intelligence blacklist, that is going to block the traffic.
02-14-2024 10:06 AM
This is because @MHM Cisco World rarely reads initial question carefully and rushes into answering it instead.
ASA/FTD does keep multiple records for the same FQDN in the cache, but this doesn't help, which is quite obvious from the explanation I have given.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide