Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
245
Views
0
Helpful
1
Replies

Use FMC Global Block List in ACL

byates
Level 1
Level 1

‎03-13-2025 03:13 PM

In FMC, there is a easy way to block IPs that are hitting your Firewall, Right Click, Block IP. My understanding is that the IP is put in the Global-Block-List (Objects>Security Intelligence>Network Lists and Feeds). 

 

My question is, can you reference that Global Block List in an Extended ACL object? Reason being, I created an extended ACL to block traffic at the control plane to block VPN attempts. It would be very helpful if, when i see an IP trying to brute force into the FW or attack it, that once i right click and block the IP, its automatically in the Extended ACL at the Control Plane level too. 

Any way to do this? 

0 Helpful
1 Reply 1

Rob Ingram
VIP
VIP

‎03-13-2025 11:59 PM

@byates no, unfortunately you cannot use the Global Block list in the control plane ACL.

FYI, you do have a new functionality to now allow or block remote access VPN connections based on country or region in 7.7, if that helps?

 

0 Helpful
Review Cisco Networking for a $25 gift card
Top