- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-15-2024 03:07 AM
as i know in fmc-ftd application control or filtering in policy is work for user --> application however does it work for server<---application. in short my source will be xyz public application and destination is my private server in this scenario fqdn and normal network or ip base policy will be work however does application based policy will be also work ?
Solved! Go to Solution.
Accepted Solutions
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-15-2024 03:11 AM
App based on TCP and in any TCP there is client and server.
here clinet is ServerA which open TCP session with ServerB as server and hence you can use FMC URL Filter and App ID
MHM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-15-2024 04:22 AM
Yes if your source application is one of the apps listed in the Application tab in the AC Rules page, it should work also. As long as the FMC/FTD can clearly see the FQDN/Signatures regardless of client/server it should be to handle these accordingly.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-27-2024 01:36 AM
The apps are inspected based on the payload not on source or destination IPs.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-15-2024 03:11 AM
App based on TCP and in any TCP there is client and server.
here clinet is ServerA which open TCP session with ServerB as server and hence you can use FMC URL Filter and App ID
MHM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-15-2024 03:30 AM
hey buddy i am not talking about url filtering i am talking about application please look at the screen shot below.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-15-2024 04:22 AM
Yes if your source application is one of the apps listed in the Application tab in the AC Rules page, it should work also. As long as the FMC/FTD can clearly see the FQDN/Signatures regardless of client/server it should be to handle these accordingly.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-27-2024 01:36 AM
The apps are inspected based on the payload not on source or destination IPs.
