I have a cisco SA 520, I want to know if I can Block HTTPS, Not the service, just https for facebook!
I tried firewall i was able to block only HTTP for facebook! I got the license for Protectlink Gateway, and blocked the social network websites, but again only the HTTP was blocked, still HTTPS are able to open! How can I stop the HTTPS facebook!
Currently SA500 supports content filtering only on port 80. You can block the https access to facebook in firewall. Perform NSlookup for facebook and create a firewall rule blocking https access to the IP addresses listed by the NSlookup.
No network based appliance will be able to filter only https traffic to a specific domain name. When the traffic leaves the clients network card the traffic information or payload is encrypted and the network appliance will not be able to un-encrypted to analyses the traffic. Jolio is correct that you could use a IP ACL to block the IP address but Web hosting companies like Facebook usually change thier IP's and this would me you would have to consistently change the ACL.
Some Enterprise devices running IOS version 12.4 I think it is or higher can build ACLs using DNS name, you would need to verify with Enterprise.
Some third party IPS or content client base software can also inspect the traffic before the traffic leaves the clients nic and be filtered at that point.
Article ID:3091 Reboot and Factory Default Reset on ISA500 Series
Integrated Security Appliances Objective Reboot or restart of the
network device is made when certain changes in the settings need reboot
or if the device is frozen. The configuration setti...
Article ID:3403 WAN Quality of Service (QoS) Policy Profiles Settings on
ISA500 Series Integrated Security Appliances Objective Wide Area Network
(WAN) Quality of Service (QoS) policy profiles manage traffic through
classed-based profiles. These profiles ...
Article ID:2922 Cisco QuickVPN Installation Tips for Windows Operating
Systems For a video showing installation tips on Quick VPN, visit
http://youtu.be/hHu2z6A78N8 Objective Cisco QuickVPN is a free software
designed for remote access to a network. It is...