Cisco Cisco ASA 5506W-X with FirePOWER Services Manual Técnica
suspicious or malicious behavior.
Manually add IP addresses to Global-Blacklist and Global-
Whitelist
Whitelist
Firepower module allows you to add certain IP addresses to Global-Blacklist when you know that
they are part of some malicious activity. IP addresses can also be added to Global-Whitelist, if you
want to allow the traffic to certain IP addresses which are blocked by blacklist IP addresses. If you
add any IP address to Global-Blacklist/Global-Whitelist, it takes effect immediately without the
need to apply the policy.
they are part of some malicious activity. IP addresses can also be added to Global-Whitelist, if you
want to allow the traffic to certain IP addresses which are blocked by blacklist IP addresses. If you
add any IP address to Global-Blacklist/Global-Whitelist, it takes effect immediately without the
need to apply the policy.
In order to add the IP address to Global-Blacklist/ Global-Whitelist, navigate to Monitoring > ASA
FirePOWER Monitoring > Real Time Eventing, hover the mouse on connection events and
select View Details.
FirePOWER Monitoring > Real Time Eventing, hover the mouse on connection events and
select View Details.
You can add either source or destination IP address to the Global-Blacklist/ Global-Whitelist. Click
on Edit button and select Whitelist Now/Blacklist Now to add the IP address to the respective
list, as shown in the image.
on Edit button and select Whitelist Now/Blacklist Now to add the IP address to the respective
list, as shown in the image.
In order to verify that source or destination IP address is added to the Global-Blacklist/ Global-
Whitelist, navigate to Configuration > ASA Firepower Configuration > Object Management >
Whitelist, navigate to Configuration > ASA Firepower Configuration > Object Management >