cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
188
Views
1
Helpful
2
Replies

IPs that are blocked by policy, still able to make VPN attempts

codewize
Level 1
Level 1

FP1010 locally managed
I have a policy at the top of my list blocking certain IPs
However, I see in the logs that IPs on that list are still able to make remote access attempts via WebVPN and get rejected because the user doesn't exist.

Why are they even able to get that far?

 

1 Accepted Solution

Accepted Solutions

The policy effect traffic pass through not traffic direct into ftd' what you want is acl control-plane that deny these IP.

https://www.cisco.com/c/en/us/support/docs/security/secure-firewall-threat-defense/221469-configure-control-plane-access-control-p.html

 

MHM

View solution in original post

2 Replies 2

The policy effect traffic pass through not traffic direct into ftd' what you want is acl control-plane that deny these IP.

https://www.cisco.com/c/en/us/support/docs/security/secure-firewall-threat-defense/221469-configure-control-plane-access-control-p.html

 

MHM

Oh, never mind, I see. Duh. Sorry.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Review Cisco Networking products for a $25 gift card