Solved

block a file?

Posted on 2006-11-21
8
174 Views
Last Modified: 2010-04-10
Is it possible to block requests for a file through a cisco pix?  We were told by our isp that we had machines requesting a particular file that is virus related.  Until I can get my av solution under control, I would like to block the request for that file in the firewall.  Is that possible?  the request is on port 80, and for osa.gif

so infected machines are looking for http://variousdomainname/osa.gif

If so, how is this done in a pix IOS 6.3

Thanks!
Scott
0
Comment
Question by:scottman29
  • 2
  • 2
  • 2
  • +2
8 Comments
 
LVL 30

Expert Comment

by:Scott C
ID: 17990609
Why would you post a like to a potentially virus infected file?

Hopefully a moderator will remove the link immediately.
0
 
LVL 5

Author Comment

by:scottman29
ID: 17990647
that's not a real link, that was an example.
0
 
LVL 30

Expert Comment

by:Scott C
ID: 17990679
Ooops.  Sorry.

I should have looked at your stats and realized you would have known better.

Guess I jumped the gun on that one.
0
Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

 
LVL 7

Accepted Solution

by:
killbrad earned 250 total points
ID: 17990709
Not possible via PIX.  

Check out Squid proxy with DansGuardian content filtering.  Very useful stuff:

http://www.squid-cache.org/
http://dansguardian.org/
0
 
LVL 8

Expert Comment

by:caddlady
ID: 17992452
can you resolve the domain name to an IP address and block all outbound to that IP address?
0
 
LVL 8

Expert Comment

by:caddlady
ID: 17992470
Something like this:

access-list outbound deny tcp any xxx.xxx.x.x 255.255.0.0 eq www

0
 
LVL 5

Author Comment

by:scottman29
ID: 17993095
well, we do have a webfilter.  I blocked it in that.  The webfilter works with the pix...
0
 
LVL 27

Expert Comment

by:pseudocyber
ID: 17995792
No, not with the pix.  You can block layer 3 and 4 traffic.  File types is layer 6 & 7.
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Sonicwall one way trust 2 63
Setting out for Cisco UCS 2 67
General network\voice question.. 4 22
PoE Injector and switch 2 18
Short answer to this question: there is no effective WiFi manager in iOS devices as seen in Windows WiFi or Macbook OSx WiFi management, but this article will try and provide some amicable solutions to better suite your needs.
This article will inform Clients about common and important expectations from the freelancers (Experts) who are looking at your Gig.
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question