Network Protection: Firewall, NAT, QoS, & IPS Deny google webstore

UTM Firewall requires membership for participation - click to join

Thread Info

State Not Answered
Locked Locked
Replies 2 replies
Subscribers 4 subscribers
Views 3482 views
Users 0 members are here

Options

Suggested

This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Deny google webstore

pedro pereira1 over 5 years ago

Hello,

we have a UTM9, and can't deny the acess to the google webstore...

It's possible ?

thanks

This thread was automatically locked due to age.

0 BAlfson over 5 years ago

Is this a question about blocking using firewall rules or one that should be moved to the forum with Web Filtering?

If Web Filtering, show a line from your Web Filtering log where a webstore access is passed.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel
0 DouglasFoster over 5 years ago
General process:

Figure out how the client connects to the resource that you want to block. Need target FQDNs, IP address(es), and ports. This requires logging your traffic, and knowing whether the client device is subject to Standard Web, Transparent Web, Both, or Neither. By default, Firewall Rules only log blocked traffic, but you can log allowed traffic as well.

In the case of Chrome talking to Google, the traffic is probably running on UDP 443 (QUIC). By default, this will evade your web filter. Add a firewall rule to block UDP 443 so that it is forced to use TCP 443 and Webfilter.
Cancel
Vote Up 0 Vote Down

Cancel