Solved

Block specific URL in NetScreen SSG-5

Posted on 2010-09-23
1
2,154 Views
Last Modified: 2012-05-10
Hello,

I have a NetScreen SSG-5 firewall and I want to block certain specific URLs.  It has been a while since I did any configuration on the unit and I am more experienced with an older model.  The unit is configured with multiple zones.  I want to block certain sites, for instance Facebook, from users.  I can use easy to follow step-by-step instructions if at all possible.

Thanks!
0
Comment
Question by:MrChip2
1 Comment
 
LVL 10

Accepted Solution

by:
ujitnos earned 500 total points
ID: 33751235
If your firewall is configured with a correct and working DNS, you can do this.
First create a Host for say Facebook in the Untrust Zone. Now instead of putting the IP address, put the domain name as www.facebook.com.
Now in the policies create a rule from say Trust to Untrust; Click on New - Source ANY  -Destination, Facebook (host created in above step), - Service ANY and Deny the rule.
 
See if it helps.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Cisco ASA Restarted Suddenly 11 86
Sonicwall - avoid extra logon to get to Internet 11 49
ASA 5510 PAT question 1 28
Sonicwall SHA issue 4 25
In this tutorial I will show you with short command examples how to obtain a packet footprint of all traffic flowing thru your Juniper device running ScreenOS. I do not know the exact firmware requirement, but I think the fprofile command is availab…
I found an issue or “bug” in the SonicOS platform (the firmware controlling SonicWALL security appliances) that has to do with renaming Default Service Objects, which then causes a portion of the system to become uncontrollable and unstable. BACK…
Migrating to Microsoft Office 365 is becoming increasingly popular for organizations both large and small. If you have made the leap to Microsoft’s cloud platform, you know that you will need to create a corporate email signature for your Office 365…
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now