Buy or Renew
Buy or Renew
NOTICE: The community will be in READ-ONLY Sept. 6 – 9 to add Umbrella release notes and announcements. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1697
Views
0
Helpful
1
Replies

FirePower URLs not working on Access Control

systemtek
Level 1
Level 1

‎06-04-2019 05:24 AM

Having an issue that so far I cant figure out.  My actual issue was that I was trying to allow a site that was blocked by another rule, but I went back to basics and try to get  a basic URL rule to match in the logs. 

Using Cisco FirePower version 6.2.2.5

 

Using URLs in Access Control rules do not match the rule - but if i was to do the rule with IPs then they do match.

 

This is a basic rule at the top of my device eg

Source Zone - Inside

Dest Zones - Outside

URL - www.example.com

 

According to this https://www.cisco.com/c/en/us/support/docs/security/firesight-management-center/117956-technote-sourcefire-00.html you should enter URL as http://www.example.com but have tried various formats in URL but nothing is working. 

 

Its not matching this rule it matches my main rule below which is "Dest Port" with "HTTP" and "HTTPS", now with that rule been above my main rule it should match that but its not.  Any ideas why ?

 

Any ideas, I have tried loads of things but no luck.

Labels:
0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎06-08-2019 07:21 AM

Do you have a URL filtering license applied to the target device where the policy is deployed?

Can you share a screen shot of the non-working rule?

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card