Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
649
Views
4
Helpful
4
Replies

source base Application filtring in FMC

Go to solution
rushispace
Level 1
Level 1

‎11-15-2024 03:07 AM

as i know in fmc-ftd application control or filtering in policy is work for user --> application however does it work for server<---application. in short my source will be xyz public application and destination is my private server in this scenario fqdn and normal network or ip base policy will be work however does application based policy will be also work ?

3 Accepted Solutions

Accepted Solutions

Go to solution
MHM Cisco World
VIP
VIP

‎11-15-2024 03:11 AM

App based on TCP and in any TCP there is client and server. 

here clinet is ServerA which open TCP session with ServerB as server and hence you can use FMC URL Filter and App ID 

MHM

View solution in original post

Go to solution
ckleopa
Cisco Employee
Cisco Employee

‎11-15-2024 04:22 AM

Yes if your source application is one of the apps listed in the Application tab in the AC Rules page, it should work also. As long as the FMC/FTD can clearly see the FQDN/Signatures regardless of client/server it should be to handle these accordingly. 

View solution in original post

Go to solution
Aref Alsouqi
VIP
VIP

‎11-27-2024 01:36 AM

The apps are inspected based on the payload not on source or destination IPs.

View solution in original post

0 Helpful
4 Replies 4

Go to solution
MHM Cisco World
VIP
VIP

‎11-15-2024 03:11 AM

App based on TCP and in any TCP there is client and server. 

here clinet is ServerA which open TCP session with ServerB as server and hence you can use FMC URL Filter and App ID 

MHM

Go to solution
rushispace
Level 1
Level 1
In response to MHM Cisco World

‎11-15-2024 03:30 AM

hey buddy i am not talking about url filtering i am talking about application please look at the screen shot below.

rushispace_0-1731670179752.png

 

Go to solution
ckleopa
Cisco Employee
Cisco Employee

‎11-15-2024 04:22 AM

Yes if your source application is one of the apps listed in the Application tab in the AC Rules page, it should work also. As long as the FMC/FTD can clearly see the FQDN/Signatures regardless of client/server it should be to handle these accordingly. 

Go to solution
Aref Alsouqi
VIP
VIP

‎11-27-2024 01:36 AM

The apps are inspected based on the payload not on source or destination IPs.

0 Helpful
Review Cisco Networking for a $25 gift card
Top