02-26-2010 11:02 PM - edited 03-11-2019 10:15 AM
02-28-2010 07:17 PM
Besides blocking cooltunnel.com as well, I can't think of anyother way to block this.
-KS
02-28-2010 11:34 PM
You could use Modular Policy Framework on ASA and filter HTTP traffic based on url content, I think it could solve your problem.
Even if they use a proxy, the HTTP traffic destined to facebook will be inspected by the ASA MPF and drop it.
03-01-2010 05:24 AM
Actually this is very difficult and time consuming if you want to do this with the ASA.
Either buy CSC-SSM module for the ASA and configure it accordingly or use a web security gateway like ironport.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: