Having an issue that so far I cant figure out. My actual issue was that I was trying to allow a site that was blocked by another rule, but I went back to basics and try to get a basic URL rule to match in the logs.
Using Cisco FirePower version 6.2.2.5
Using URLs in Access Control rules do not match the rule - but if i was to do the rule with IPs then they do match.
This is a basic rule at the top of my device eg
Source Zone - Inside
Dest Zones - Outside
URL - www.example.com
According to this https://www.cisco.com/c/en/us/support/docs/security/firesight-management-center/117956-technote-sourcefire-00.html you should enter URL as http://www.example.com but have tried various formats in URL but nothing is working.
Its not matching this rule it matches my main rule below which is "Dest Port" with "HTTP" and "HTTPS", now with that rule been above my main rule it should match that but its not. Any ideas why ?
Any ideas, I have tried loads of things but no luck.