1        Introduction

We can use Firepower Threat defence Service Policies to apply services to specific traffic classes. For example, you can use a service policy to create a timeout configuration that is specific to a particular TCP application, as opposed to one that applies to all TCP applications. A service policy consists of multiple actions or rules applied to an interface or applied globally.

Note: To modify the global parameters of timeouts in Cisco FTD, we can use platform policies, as shown below.

Device > Platform Settings > Platform Setting Policy

Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/630/configuration/guide/fpmc-config-guide-v63/platform_settings_for_firepower_threat_defense.html#task_E490D7557C8C410F8CFD4D04EB07A450

2        Implementation Steps

2.1        Step 1

Create Extended Access Control List and define the custom port

2.2        Step 2

Connect to the ACP policy for your SNE and to Advance settings > Threat Defence Service Policy

2.2        Step 3

• Click ADD rule & click next

• Select the Extended ACL which you created in step 1 & click Next.
• Customize your timeout parameters

2.4     Step 4

Save and deploy the changes.