Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
999
Views
0
Helpful
1
Replies

FirePOWER not blocking TOR even with enabled security intelligence

epaskgict
Level 1
Level 1

‎06-16-2017 02:54 AM - edited ‎03-12-2019 06:25 AM

I have Cisco ASA5525-X Threat Defense and i cannot block tor networks. I have configured Security Intelligence to black list tor-exit-node but no luck. Any suggestions?

1 person had this problem
Labels:
0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎06-16-2017 07:38 AM

I've done it sccessfully (and verified via testing) with clients running FMC 6.1 and later. What version are you running? Have you confirmed that your Security Intelligence feed (Objects > Security Intelligence > Network Lists and Feeds > Cisco-Intelligence-Feed) is being updated?

Can you share a screenshot of your Access Control Policy Security Intelligence settings and confirm it is deployed to the device?

Also, if you can, share a connection event showing the allowed connection to a TOR exit node.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card