Beruflich Dokumente
Kultur Dokumente
(SW8808)
Title
How to block Facebook and Gmail in CFS 3.0 SonicOS 5.8 and above.
Resolution
Article Applies To:
Firmware/Software Version: SonicOS Enhanced 5.8.0.0 and above (Gen 5); SonicOS Enhanced 6.1.0.0 and above (Gen 6)
Services: CFS, App Rules
Feature/Application:
This article describes the method to block Gmail.com and Facebook.com using CFS 3.0.
CFS examines the Server Extensions field in the Client Hello message and/or the CN in the Server Hello
message to block HTTPS sites. HTTP sites are blocked by examining the Host field of the GET request. The
following sections describe the methods involved in blocking both HTTP and HTTPS gmail.com and
facebook.com.
Enabling HTTPS Content Filter Globally
Blocking using Forbidden Domains in CFS via Users and Zone Screens
Click on Configure under Content Filter Type with SonicWALL CFS selected.
Blocking using Forbidden Domains in CFS via Users and Zone Screens
Select Via User and Zone Screens under CFS Policy Assignment.
Click on Add under Forbidden Domains and enter facebook.com and mail.google.com
enforce the same on custom CFS policies their Custom List Settings needs to be manually set to Global.
Edit the custom CFS policy.
Click on OK to save.
Click on Add New Policy and create the following App Rule.
Log Messages
When SonicWALL CFS blocks HTTPS websites users will not see a blocked page only a connectionreset page.