cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
402
Views
5
Helpful
2
Replies

Not able to setup a Domain Age rule rule in Cisco Firepower 6.6.5?

Mogwai
Level 1
Level 1

I've poked around a bit and haven't been able to see a way in order to implement a domain age rule on our Cisco Firepower which is running 6.6.5. I see online that a rule can be created using Cisco umbrella, but is there really not a way to implement this on the firewall itself at this time?

1 Accepted Solution

Accepted Solutions

Mogwai
Level 1
Level 1

Found out that this wouldn't be possible for our environment. Closing this thread. 

View solution in original post

2 Replies 2

Marvin Rhoads
Hall of Fame
Hall of Fame

There are settings in your Access Control Policy's Security Intelligence (SI) that allow you to add "Newly_Seen" (networks) and "URL_Newly_Seen" (URLs) to the Block list.

See the following example:

FMC SI Newly Seen blockingFMC SI Newly Seen blocking

Mogwai
Level 1
Level 1

Found out that this wouldn't be possible for our environment. Closing this thread. 

Review Cisco Networking for a $25 gift card