Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
595
Views
0
Helpful
2
Replies

Http Vs Https sites

clark white
Level 2
Level 2

‎11-06-2016 10:51 AM - edited ‎03-12-2019 06:11 AM

Dears

I m blocking a streaming media category in url filtering but it is not getting blocked, and it is falling in the default action,  I have a question that without enabling SSL decryption https websites cannot be blocked ??  as I have seen in forums people says that it can be controlled by application filtering???

I want to block youtube.com, facebook.com, and there are many https sites so how we can controlled all https sites  becz enabling ssl decryption for all the traffic will impact the performance on the firepower module on 5525X

thanks

Labels:
0 Helpful
2 Replies 2

hoffa2000
Level 3
Level 3

‎11-06-2016 10:00 PM

Hi

If it's a regular block of a site you want to achieve application filtering works well for me, even if the site is encrypted. If you have version 6 or above on the Firepower modules there is also the option of blocking the DNS lookup for the sites.

Regards

Fredrik

0 Helpful

clark white
Level 2
Level 2
In response to hoffa2000

‎11-07-2016 11:47 AM

Dear Hoffa,

Please find  the attached file where it shows that all https traffic is passed to the default action where I have a policy on top level where I am blocking youtube for the users.

thanks

Preview file
42 KB
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card