Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2290
Views
5
Helpful
2
Replies

Use Firepower to block http traffic that is running over tcp port 443?

Go to solution
travwrig
Cisco Employee
Cisco Employee

‎02-16-2017 04:43 PM - edited ‎03-12-2019 06:17 AM

What is the way to block users from accessing HTTP websites that are running on tcp/443 instead of tcp/80?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎02-18-2017 04:57 AM

Yes. There is an optional setting in the preprocessor to "Detect Anomalous HTTP Servers".

Details for setting it can be found here:

http://www.cisco.com/c/en/us/td/docs/security/firepower/620/configuration/guide/fpmc-config-guide-v62/application_layer_preprocessors.html#ID-2244-0000052b

View solution in original post

2 Replies 2

Go to solution
robert.harmon
Level 1
Level 1

‎02-17-2017 07:23 PM

Your intrusion policy must be set to block.  You might want to look at the Configuration guides located on Cisco's support site:  http://www.cisco.com/c/en/us/support/security/defense-center/products-installation-and-configuration-guides-list.html for additional information.

Hope this helps.

0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎02-18-2017 04:57 AM

Yes. There is an optional setting in the preprocessor to "Detect Anomalous HTTP Servers".

Details for setting it can be found here:

http://www.cisco.com/c/en/us/td/docs/security/firepower/620/configuration/guide/fpmc-config-guide-v62/application_layer_preprocessors.html#ID-2244-0000052b

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card