CaptainGiblets
asked on
Dell Sonicwall CFS
I have created policies for 3 different groups in my work
Admins, Managers and Users.
I ban most things for users however I am looking for a way to unblock a lot of the websites between lunch hours.
The only thing is I still need to ban websites like youtube etc from normal users to stop people using up all our bandwidth. Is there a way to have 1 set of sites banned at normal times and another group banned between lunch hours for my normal users?
Admins, Managers and Users.
I ban most things for users however I am looking for a way to unblock a lot of the websites between lunch hours.
The only thing is I still need to ban websites like youtube etc from normal users to stop people using up all our bandwidth. Is there a way to have 1 set of sites banned at normal times and another group banned between lunch hours for my normal users?
Hi CaptainGiblets,
How are you planning on applying the policies to each group, e.g. (IP range, SSO, authentication, Zone, Rules, etc.)?
How are you planning on applying the policies to each group, e.g. (IP range, SSO, authentication, Zone, Rules, etc.)?
ASKER
At the moment I am trying to apply them by SSO. I also have it enabled on the Zone but that obviously only lets me pick 1 policy per zone.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Do you have any other questions?
ASKER
I haven't closed it off just yet as I am testing.
I have set the groups up the way I want them with Users, Managers and Admins.
The Default group bans everything and seems to work if they cant authenticate via SSO or they aren't in one of the groups.
I have also had some problems creating a lunch time rule, which I allow between 12:30 - 2:30 and allows access to more sites. This is working but sometimes the other rules such as users or managers are taking over and blocking the sites but 5 minutes later they wont be.
Trying to figure out exactly how the rules work, the way I think it works is that if they are a member of 5 CFS's and even one of them rules allow it, then it allows them access otherwise it will block it. However these odd blocks sometimes make it seem a bit random.
I have set the groups up the way I want them with Users, Managers and Admins.
The Default group bans everything and seems to work if they cant authenticate via SSO or they aren't in one of the groups.
I have also had some problems creating a lunch time rule, which I allow between 12:30 - 2:30 and allows access to more sites. This is working but sometimes the other rules such as users or managers are taking over and blocking the sites but 5 minutes later they wont be.
Trying to figure out exactly how the rules work, the way I think it works is that if they are a member of 5 CFS's and even one of them rules allow it, then it allows them access otherwise it will block it. However these odd blocks sometimes make it seem a bit random.
Glad I could help and thanks for the points!
ASKER
I have 2 goups Managers and Users
Tom is in Users
Paul is in Managers
When I look at the users in summary I can see Tom has the CFS policy default applied and Paul has the CFS policy managers and default.
I have added the site test.com to the forbidden domains on both managers and users, but for some reason tom is being banned but paul isn't....