Solved

Dell Sonicwall CFS

Posted on 2014-01-21
7
371 Views
Last Modified: 2016-11-23
I have created policies for 3 different groups in my work

Admins, Managers and Users.

I ban most things for users however I am looking for a way to unblock a lot of the websites between lunch hours.

The only thing is I still need to ban websites like youtube etc from normal users to stop people using up all our bandwidth. Is there a way to have 1 set of sites banned at normal times and another group banned between lunch hours for my normal users?
0
Comment
Question by:CaptainGiblets
  • 4
  • 3
7 Comments
 
LVL 6

Author Comment

by:CaptainGiblets
Comment Utility
To add to this question CFS is kind of confusing me a little.... I have enabled CFS on users and zones, with the default CFS blocking sites I want banned for normal users. I have enabled this in the zone LAN

I have 2 goups Managers and Users

Tom is in Users
Paul is in Managers

When I look at the users in summary I can see Tom has the CFS policy default applied and Paul has the CFS policy managers and default.

I have added the site test.com to the forbidden domains on both managers and users, but for some reason tom is being banned but paul isn't....
0
 
LVL 24

Expert Comment

by:diverseit
Comment Utility
Hi CaptainGiblets,

How are you planning on applying the policies to each group, e.g. (IP range, SSO, authentication, Zone, Rules, etc.)?
0
 
LVL 6

Author Comment

by:CaptainGiblets
Comment Utility
At the moment I am trying to apply them by SSO. I also have it enabled on the Zone but that obviously only lets me pick 1 policy per zone.
0
6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

 
LVL 24

Accepted Solution

by:
diverseit earned 500 total points
Comment Utility
Correct, Zones only allow one policy at a time. If you are using SSO, then you can apply them to each group.
0
 
LVL 24

Expert Comment

by:diverseit
Comment Utility
Do you have any other questions?
0
 
LVL 6

Author Comment

by:CaptainGiblets
Comment Utility
I haven't closed it off just yet as I am testing.

I have set the groups up the way I want them with Users, Managers and Admins.

The Default group bans everything and seems to work if they cant authenticate via SSO or they aren't in one of the groups.

I have also had some problems creating a lunch time rule, which I allow between 12:30 - 2:30 and allows access to more sites. This is working but sometimes the other rules such as users or managers are taking over and blocking the sites but 5 minutes later they wont be.

Trying to figure out exactly how the rules work, the way I think it works is that if they are a member of 5 CFS's and even one of them rules allow it, then it allows them access otherwise it will block it. However these odd blocks sometimes make it seem a bit random.
0
 
LVL 24

Expert Comment

by:diverseit
Comment Utility
Glad I could help and thanks for the points!
0

Featured Post

6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

Join & Write a Comment

This is an article about my experiences with remote access to my clients (so that I may serve them) and eventually to my home office system via Radmin Remote Control. I have been using remote access for over 10 years and have been improving my metho…
Disabling the Directory Sync Service Account in Office 365 will stop directory synchronization from working.
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now