This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
AndyH
Participant
‎2023-05-25 04:23 AM
Jump to solution

Blocking BBC iPlayer

Hi,

 

Apologies if this is the wrong place to post but am having a world of trouble trying to get BBC iPlayer blocked on a 1590 device.

The "BBC iPlayer"  Application/service doesn't seem to do anything when assigned to a policy, nor does a custom policy with wildcard URL's in (*bbci.co.uk*, *iplayer.api.bbc.co.uk*) - these may be old as the most recent post I can find from BBC is back from 2017!

Source: Any   Destination: Internet  Application/Service: BBC iPlayer (or custom) Action: Block

Does anyone have any experience of this/successfully blocked the site?

 

Many thanks in advance, 

 

Andy 

0 Kudos
1 Solution

Accepted Solutions
G_W_Albrecht
Legend Legend
Legend
‎2023-05-26 09:42 AM
In response to AndyH
Jump to solution

Better contact TAC - a quick remote session will help you to achieve that, or R&D has to fix it!

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist

View solution in original post

0 Kudos
12 Replies
G_W_Albrecht
Legend Legend
Legend
‎2023-05-25 05:46 AM
Jump to solution

Seems you have a centrally managed 1590 ! On locally managed the config would be:

bbc.png

The central management rule base would be interesting if used... But i would rather contact CP TAC to get this resolved asap!

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
(1)
AndyH
Participant
‎2023-05-25 06:59 AM
In response to G_W_Albrecht
Jump to solution

Hi, 

Thank you both for getting back to me.

These are indeed locally managed 1590 boxes, I've been trying to get a poliy block to stick on several of them, the standard 'BBC iPlayer' entry doesn't seem to cut it so I'm also trying with wildcarded URl's
I've through Policy and now Blade, as suggested, but neither of these appear to be doing the trick.

Am assuming there's something at our end causing issues so will keep banging my head against it until it works!

Thank you both for your help  🙂

0 Kudos
G_W_Albrecht
Legend Legend
Legend
‎2023-05-26 09:42 AM
In response to AndyH
Jump to solution

Better contact TAC - a quick remote session will help you to achieve that, or R&D has to fix it!

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
AndyH
Participant
‎2023-05-27 12:38 AM
In response to G_W_Albrecht
Jump to solution

Hi, thank you all for your help. I think we're getting somewhere with it but I'll contact TAC to be sure. I'm marking this response as the 'Solution' to try and close the ticket down (if that's how I do it?) but would like to express my gratitude for all your responses.

(I tried to star and give Kudos to everyone but don't know if it's taken root!)

Best regards,

Andy

0 Kudos
the_rock
Legend
Legend
‎2023-05-27 05:04 AM
In response to AndyH
Jump to solution

Keep us posted...dont worry about kudos, but if you really want to give them, below is how : - ). Same for stars...just hover over whichever star until it lights up, from 1 to 5.

Andy

 

Screenshot_1.png

0 Kudos
the_rock
Legend
Legend
‎2023-05-26 09:47 AM
In response to AndyH
Jump to solution

As @G_W_Albrecht said, better contact TAC.

Andy

0 Kudos
the_rock
Legend
Legend
‎2023-05-25 05:58 AM
Jump to solution

To add to what Guenther gave you, I also verified in dashboard (IF this is centrally managed) and below is what I see for BBC. As he  said, maybe get in touch with TAC to get this solved faster via remote session.

Andy

 

Screenshot_1.png

(1)
G_W_Albrecht
Legend Legend
Legend
‎2023-05-25 06:28 AM
In response to the_rock
Jump to solution

I did verify that, too - but  this is just what @AndyH told about the policy used.

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
(1)
the_rock
Legend
Legend
‎2023-05-25 06:44 AM
In response to G_W_Albrecht
Jump to solution

Yea, I believe those 4 come up by default.

(1)
_Val_
Admin
Admin
‎2023-05-25 07:34 AM
Jump to solution

HTTPS based application blocking might require HTTPSi to be enabled. Second the TAC recommendation, to expedite this

(1)
AaronCP
Advisor
‎2023-05-27 02:51 PM
Jump to solution

Hey @AndyH,

 

We blocked BBC iPlayer by creating a Custom Application/Site and used regex expressions for the various BBC iPlayer URLs. We used this Custom Application/Site in a drop rule in policy, which worked well.

 

This does require HTTPS inspection to be enabled, though.

 

Aaron.

the_rock
Legend
Legend
‎2023-05-27 05:14 PM
In response to AaronCP
Jump to solution

Yes sir! Correct, https inspection is required.

Andy

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events