How to Block Toolbar Search using App Rules (Application Firewall) and Client DPI-SSL
03/26/2020
333 People found this article helpful
193,470 Views
Description
How to Block Toolbar Search using App Rules (Application Firewall) and Client DPI-SSL
Resolution
Enabling Client DPI-SSL
Note: Before enabling Client DPI-SSL, administrators must be aware that Client DPI-SSL will proxy all outgoing SSL connections. To this end, SonicWall will re-sign the SSL certificates passing to hosts. This will trigger certificate errors in the browsers. To avoid these errors, import the SonicWall DPI-SSL CA certificate as a trusted Root CA into the browser's (or the computer's) certificate store. For more information, see UTM: Distributing the Default SonicWall DPI-SSL CA certificate to client computers using Group Policy
1. Navigate to the DPI-SSL | Client SSL page.
2. Enable check box Enable SSL Client Inspection
3. Enable check box Application Firewall
4. Click on Accept at the top to save the changes.

Create a Match Object of type HTTP URI Content
1. Click on Add New Match Object to open the Add/Edit Match Object window.
2. Enter a name for the match object.
3. Select HTTP URI Content under Match Object Type
4. Select Match Type as Partial
5. Set Input Representation as Alphanumeric
6. Under Content, enter the following keywords one after another:
client=firefox-a
client=ietb
form=MOZSBR
fr=moz35
sourceid=navclient
7. Click on Add after each entry.
8. Click on OK to save.

In order to be able to block searches from the Google toolbar installed in IE, we must create a separate Match Object with the following values
Create a Match Object of type HTTP Referer
1. Click on Add New Match Object again to open the Add/Edit Match Object window.
2. Enter a name for the match object.
3. Select HTTP Referer under Match Object Type
4. Select Match Type as Partial
5. Set Input Representation as Alphanumeric
6. Under Content, enter the following keyword:
sourceid=toolbar
7. Click on Add.
8. Click on OK to save.

Create App Rules
1. Navigate to the Firewall | App Rules page.
2. Enable the check-box Enable App Rules.
3. Click on the Add New Policy button to open the Edit App Control Policy window.
4. Enter the following information and click on OK.


Related Articles
Categories
Was This Article Helpful?
YES
NO