@Lee Dress
thats Client Services port which is used to download secure client/anyconnect updates, profiles and other settings. You can specify a different port or disable (if you do that the clients will not receive updates).
https://www.cisco.com/c/...
@Chuck Reimer if traffic matches the filter you applied it should display on the console.
https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw/214577-firepower-data-path-troubleshooting-phas.html
@Chuck Reimer you can use the command system support firewall-engine-debug and apply a filter on source/destination IP and generate traffic to determine what rule the traffic matches against.
Is your input interface correct? should it not be the ins...
@Matthew Martin I checked my lab, you could unassign the FTD from the Remote Access Policy Assignment.
It looks like you cannot just remove SSL and IPSec from the Group Policy, you must select at least one protocol.
If you are using a custom connecti...
@Matthew Martin Normally I'd suggest deleting the connection profile, but seeing as you wish to keep RAVPN configured as an emergency, then your suggestion seems fine and would disable SSL/IPSec.