Solved: source base Application filtring in FMC

rushispace · ‎11-15-2024

as i know in fmc-ftd application control or filtering in policy is work for user --> application however does it work for server<---application. in short my source will be xyz public application and destination is my private server in this scenario fqdn and normal network or ip base policy will be work however does application based policy will be also work ?

MHM Cisco World · ‎11-15-2024

App based on TCP and in any TCP there is client and server.

here clinet is ServerA which open TCP session with ServerB as server and hence you can use FMC URL Filter and App ID

MHM

View solution in original post

ckleopa · ‎11-15-2024

Yes if your source application is one of the apps listed in the Application tab in the AC Rules page, it should work also. As long as the FMC/FTD can clearly see the FQDN/Signatures regardless of client/server it should be to handle these accordingly.

View solution in original post

Aref Alsouqi · ‎11-27-2024

The apps are inspected based on the payload not on source or destination IPs.

View solution in original post

MHM Cisco World · ‎11-15-2024

App based on TCP and in any TCP there is client and server.

here clinet is ServerA which open TCP session with ServerB as server and hence you can use FMC URL Filter and App ID

MHM

rushispace · ‎11-15-2024

hey buddy i am not talking about url filtering i am talking about application please look at the screen shot below.

ckleopa · ‎11-15-2024

Yes if your source application is one of the apps listed in the Application tab in the AC Rules page, it should work also. As long as the FMC/FTD can clearly see the FQDN/Signatures regardless of client/server it should be to handle these accordingly.

Aref Alsouqi · ‎11-27-2024

The apps are inspected based on the payload not on source or destination IPs.