Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
117
Views
0
Helpful
3
Replies

FTD access rule blocks other protocols that are not defined

komiks
Level 1
Level 1

‎10-01-2025 10:06 PM

Hi,

In FTD v7.6.2 I have and access rule to block incoming traffic with destination port ssh,rdp and telnet. but,upon checking the logs, traffics was block using this rule with destination ports for others not specified in the rule(dns, snmp,ldap etc.). Is there anyone who also experience this?

0 Helpful
3 Replies 3

balaji.bandi
Hall of Fame
Hall of Fame

‎10-01-2025 11:53 PM

No, that's not it should be working like that. Suppose you're using FMC, you can drill down and check which rule this is hitting in the events.

By default, the firewall blocks everything; you need to have allow rules.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

komiks
Level 1
Level 1
In response to balaji.bandi

‎10-02-2025 01:44 AM

correct. but we created a deny rule to a specific ip addresses to disallow rdp for these ip. but logs shows it blocks also dns,snmp,ntp.

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to komiks

‎10-02-2025 02:02 AM

As I mentioned, review the ACP and check the events drill-down. Is the same policy hitting or any other?

Or is this problem you're seeing after upgrading the code to 7.6.2?

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card