Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
322
Views
0
Helpful
5
Replies

CSA MC block website

study_voip
Level 1
Level 1

‎07-25-2008 10:53 AM - edited ‎03-10-2019 01:37 PM

We have CSA MC v5.2 and CSA agent on all PC, is there any way to define policy to block certain website, like youtube or facebook etc. while blocking, can this be done by name instead of IP address?

thanks

Labels:
0 Helpful
5 Replies 5

pmccubbin
Level 5
Level 5

‎07-25-2008 11:20 AM

Hi Guy,

You should consider a proxy or a product like Websense if you want to block certain websites.

Let CSA concentrate on what it does best: protecting your assets from worms and viruses. It does a magnificent job of correlating the behavior of your end systems. Your host-based intrusion protection systems like CSA should only be tasked to monitor things like file and memory access, process behavior, and access to shared libraries.

Block websites at the perimeter, or as close to the perimeter as possible and don't overload your workstations and servers with processes better performed by other devices.

Hope this helps.

Paul

0 Helpful

study_voip
Level 1
Level 1
In response to pmccubbin

‎07-25-2008 12:11 PM

200% agree on your point.

however, you did not answer my question.

thanks

0 Helpful

Marwan ALshawi
VIP Alumni
VIP Alumni
In response to study_voip

‎07-25-2008 07:40 PM

Data sets are variables that you can use as data access control rules. These sets are sets of strings that you can group together. Their only purpose is to be matched against the Uniform Resource Identifier (URI) in HTTP requests

Choose Configuration > Variables > Data Sets.

then you can make the data set with URI u want to match with a rule that applied to all http requests from ur inside to any as outside

if u have ASA/PX do it there

if u dont know how tell me i can help u

good luck

please, Rate if helpful

0 Helpful

study_voip
Level 1
Level 1
In response to Marwan ALshawi

‎07-26-2008 11:03 AM

Please give more detailed steps, I did not see how to make the data set with URL

thanks

0 Helpful

Marwan ALshawi
VIP Alumni
VIP Alumni
In response to study_voip

‎07-26-2008 05:22 PM

the mentioned above not URL it is uri which is part from a URL

like www.wesite1.com/infro/books

so the /info/books/ csan be considered as a uri

u just need to know how to make a data set

which should be like the above example

try to make it like

*.youtube.com/

*.youtube/.com

not sure but try like the above ways

dont forget on ur rule to make the right rource and destination IPs

good luck mate

Rate if helpful

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents