Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

How do I make exceptions for IP ranges

I can't seem to find a good answer to this... I need to have certain hosts be able to run blocked applications on other hosts. Can I set exceptions by username and/or IP address?

3 REPLIES
Blue

Re: How do I make exceptions for IP ranges

What product are you trying to configure?

Tom

Community Member

Re: How do I make exceptions for IP ranges

CSA 4.5

Blue

Re: How do I make exceptions for IP ranges

It is possible to create network address sets of trusted hosts which you can allow other hosts to accept connections from.

If you have static IP address it's relatively simple.

For example, you could create a Network Access Control rule that allows all hosts to accept connections from x.x.x.x on TCP port 161 if you had something using SNMP.

You'll just need to determine what IPs and ports to allow if that's all that's preventing it.

172
Views
0
Helpful
3
Replies
CreatePlease to create content