Re: TCP/UDP port whitelisting in cisco FTD

King_1988 · ‎01-20-2021

Hello Guys,

Is there any way to whitelisting TCP/UDP port from Cisco FTD? From the connection events we saw that some of the specific ports are being blocked.

Francesco Molino · ‎01-20-2021

Hi

You'll need to create a rule (prefilter or ACP) to allow these ports.

Are they blocked because denied by a specific or default rule, or blocked traffic blocked by snort process?

Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question

King_1988 · ‎01-20-2021

Dear Molino,

Thanks for your reply.

Do you have any related document or can you share the steps of doing this?

King_1988 · ‎01-20-2021

Dear Molino,

It is blocked by SNORT Process.

Do you have any related document or could you share the steps of doing this?

Francesco Molino · ‎01-24-2021

Are you using FMC? If so, while going into advanced troubleshooting menu on your device, you can do a capture with trace and share the output.

Or you can go over CLI and type in system support trace, try your communication and share the output of the trace you got from CLI.

Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question

balaji.bandi · ‎01-21-2021

have you looked at the logs, is any IPS get involved ?

check below URL help you :

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help