Solved

block a file?

Posted on 2006-11-21
8
172 Views
Last Modified: 2010-04-10
Is it possible to block requests for a file through a cisco pix?  We were told by our isp that we had machines requesting a particular file that is virus related.  Until I can get my av solution under control, I would like to block the request for that file in the firewall.  Is that possible?  the request is on port 80, and for osa.gif

so infected machines are looking for http://variousdomainname/osa.gif

If so, how is this done in a pix IOS 6.3

Thanks!
Scott
0
Comment
Question by:scottman29
  • 2
  • 2
  • 2
  • +2
8 Comments
 
LVL 29

Expert Comment

by:ScottCha
ID: 17990609
Why would you post a like to a potentially virus infected file?

Hopefully a moderator will remove the link immediately.
0
 
LVL 5

Author Comment

by:scottman29
ID: 17990647
that's not a real link, that was an example.
0
 
LVL 29

Expert Comment

by:ScottCha
ID: 17990679
Ooops.  Sorry.

I should have looked at your stats and realized you would have known better.

Guess I jumped the gun on that one.
0
What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

 
LVL 7

Accepted Solution

by:
killbrad earned 250 total points
ID: 17990709
Not possible via PIX.  

Check out Squid proxy with DansGuardian content filtering.  Very useful stuff:

http://www.squid-cache.org/
http://dansguardian.org/
0
 
LVL 8

Expert Comment

by:caddlady
ID: 17992452
can you resolve the domain name to an IP address and block all outbound to that IP address?
0
 
LVL 8

Expert Comment

by:caddlady
ID: 17992470
Something like this:

access-list outbound deny tcp any xxx.xxx.x.x 255.255.0.0 eq www

0
 
LVL 5

Author Comment

by:scottman29
ID: 17993095
well, we do have a webfilter.  I blocked it in that.  The webfilter works with the pix...
0
 
LVL 27

Expert Comment

by:pseudocyber
ID: 17995792
No, not with the pix.  You can block layer 3 and 4 traffic.  File types is layer 6 & 7.
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Data center, now-a-days, is referred as the home of all the advanced technologies. In-fact, most of the businesses are now establishing their entire organizational structure around the IT capabilities.
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

773 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question