02-10-2017 02:23 AM - edited 03-12-2019 06:17 AM
On FirePOWER, Access Control Policies can be configured for blocking with RESET.
Cisco's documentation doesn't say if the RST flag is sent to both source and destination. Some IPS vendors don't send the RST to the offender.
So, how is FirePOWER do it? Does it send RST to both parties?
Thank you.
Cath.
02-22-2017 12:36 PM
Want to know about the ACP rules block or IPS rules block? They are different things.
Also, it would depend on the rules and the rule matched....
12-27-2017 11:39 AM
Old topic, but I was looking at something similar before I decided to try it by myself.
It sends the Reset flag to both sides of the communication.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide