How to restrict web features in CFS 4.0
Description
Restrict Web Features is available in CFS 3.0, but in CFS 4.0 this feature has been removed. This article will show you how to realize Restrict Web Features after upgrading to CFS 4.0.
Resolution
• ActiveX • Java • Cookies • Access to HTTP Proxy Servers
When you upgrade to CFS 4.0, as these features are removed, you can follow below steps to block these applications.
- Block ActiveX
1. Go to Firewall | Content Filter Objects | Create an ActiveX URI Object.
Add an Active X URI Object "*.ocx" at URI List Objects area.
2. Add the Active X URI List Object to the Forbidden URI List of the CFS Profile Object at CFS Profile Objects area
3. Navigate to Security Services | Content Filter page, Create the CFS Policy with the Profile Object you created in step 2.
- Block Java
1. Go to Firewall | Content Filter Objects | Create an JAVA URI Object.
Add an JAVA URI Object "*.jar" and "*.class"at URI List Objects area.
2. Add the JAVA URI List Object to the Forbidden URI List of the CFS Profile Object at CFS Profile Objects area
3. Navigate to Security Services | Content Filter page, Create the CFS Policy with the Profile Object you created in step 2.
- Block Cookies
1. Go to Firewall | Content Filter Objects | Edit or Add a CFS Action Objects | Tick the box of option Wipe Cookies
2. Navigate to Security Services | Content Filter page, Create the CFS Policy with the Action Object you created in step 1.
- Block Access to HTTP Proxy Servers
Note: to block HTTP Proxy Servers, you should have your License for App Rules ready.
1. Navigate to Firewall | App Control Advanced page, Enable App Control at App Control Global Settings area.
2. Select PROXCY-ACCESS for Category and HTTP Proxy for Application at App Control Advanced area | Click Configure button for HTTP Proxy Application.
3. Select Enable for option Block in the pop-up App Control App Settings window | Click button OK.
