Solved: Re: FMC not seeing HTTP/HTTPS traffic

Knassi · ‎05-23-2023

So i am trying to find out why i am unable to get on a website. I do not see any blocks in the FMC, i don't even see any traffic related to that IP. But when i try to ping it, i see the ICMP traffic in the FMC. Has anyone seen this kind of problem?

Rob Ingram · ‎05-23-2023

@Knassi are you logging traffic?

From the CLI of the FTD run "system support firewall-engine-debug" filter on the source ip and/or destination and generate traffic. The output on the console will confirm traffic is passing through the firewall and tell you which rule traffic is matching.

View solution in original post

Rob Ingram · ‎05-23-2023

@Knassi are you logging traffic?

From the CLI of the FTD run "system support firewall-engine-debug" filter on the source ip and/or destination and generate traffic. The output on the console will confirm traffic is passing through the firewall and tell you which rule traffic is matching.

Knassi · ‎05-23-2023

So i have been able to pull some traffic and there is only one rule match, the very last one that actually allows any any. How can an "allow any any "rule be blocking traffic?

Knassi · ‎05-23-2023

I think the intrusion prevention policy dropped the packet before it hit the access control policy rule. Thank you all

MHM Cisco World · ‎05-23-2023

I follow your Q, if am right you run the below
you make management connect to INside then to FMC ?
this not recommend from Cisco
that why your management traffic hit the ACP of FTD