Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Roger_Boyle
Explorer

How to block a specific URL

Trying to block:

https://www.virtualbox.org/wiki/Downloads

Using R80.10, HTTPS Inspection is enabled. I can block the domain but I need to block the "Downloads". Every custom app rule I make never hits o this URL, I don't think I am getting the syntax right for the "regular expression". Any help will be greatly appreciated.

 

0 Kudos
Reply
8 Replies
Cyber_Serge
Contributor

Did you make a custom application/site object under application policy to block it?

0 Kudos
Reply
PhoneBoy
Admin
Admin

You can't block a specific HTTPS URL unless HTTPS Inspection is enabled.
And if you're using HTTPS Inspection, it's highly recommended you be on a more current release.

0 Kudos
Reply
Roger_Boyle
Explorer

Well just because of that I spun up an R80.40 release and HTTPS inspection enabled. Same problem, the rule never gets hit. I've checked the regex expression and it appears to be right. If I missed something please let me know. Screenshots are attached.

0 Kudos
Reply
PhoneBoy
Admin
Admin

Try not backslashing the forward slashes in your URL.

0 Kudos
Reply
_Val_
Admin
Admin

@Roger_Boyle did you try using a native URL without regular expressions?

Also, in this specific case Dameon is correct, HTTPSi should be enabled.

0 Kudos
Reply
AlejandroH
Ambassador
Ambassador

So I tested your request on my lab and I couldn't do the exact page.  I was able to do the homepage and even with HTTPS enabled it will not work.  Regex didn't solve it,  

Using your logic of not allowing users to download from Virtualbox.org but not block the page, you can use Content awareness.  Build a custom app for the URL (virtualbox.org*) and use content aware to not allow download of ANY file.  Set the action to block and that would allow access to the page but not to download anything from the site.

0 Kudos
Reply
Mithu
Explorer

Is it possible to block a particular page? I thought firewalls can inspect up to domain level (URL) not gradual inspection like whole URI, this was the information provided by TAC engineer when I  open a SR for a similar requirement!!

0 Kudos
Reply
PhoneBoy
Admin
Admin

If your goal is to prevent downloads from virtualbox.org, using Content Awareness is probably the right answer as it should catch it regardless of the URL.
If you have a requirement to block a specific URL on a specific site, HTTPS Inspection is enabled, and it's not working correctly, please engage with the TAC.

0 Kudos
Reply