A Customer of ours wishes to Block access to ALL external Websites and only allow particular ones in the Trusted Sites List.
I wish to know if it is at all possible to block all the websites and if so, how this could be done.
The Client has On Premise - F-Sercure Policy Manager.
Unfortunately, it is not possible in current versions - Browsing protection Disallowed sites list has higher priority, than Trusted sites list.
second possibility could be to use FS FW rule. Just add two rules:
If you need add some "trusted" external site later you will add next rule:
Allow http/https to "site name - IP - IP range". Notify, this rule must be before the deny rule 2. above.
Might it be solution for your case?
The problem is, not only human-readable websites use HTTP(S), so there may be "collateral damage" if such a non-contextual blocking rule is implemented.
If the customer wishes to block all web browsing towards the public net, that's is best solved by installing a gateway level filtering device, for example a UTM.
Yours Sincerely: Tamas Feher, Hungary.
This topic has been closed due to inactivity. If you would like to discuss this topic further, please start a new post.
You can reference this topic in your post by adding this link:
Visit the Community
Check our Forums or How-to & FAQs for advice or answers
View User Guides
Refer to our getting started guides and product manuals
Talk to our Support agents and get answers to your questions