• February 24, 2025, 10:07:02 AM
  • Welcome, Guest
Please login or register.

Login with username, password and session length
Advanced search  

News:

This Forum Beta is ONLY for registered owners of D-Link products in the USA for which we have created boards at this time.

Author Topic: Word based blacklists  (Read 6777 times)

fernando.w

  • Level 1 Member
  • *
  • Posts: 10
    • Dígitro Tecnologia
Word based blacklists
« on: April 15, 2010, 11:04:16 AM »
Hello,

As we know the DFL-800 permits to create ALGs with blacklists/whitelists to handle the permissions of Internet access (IP rules). But it is possible to create a blacklist based in words to use in ip rules?

Best Regards,
Logged
Fernando Willemann
Dígitro Tecnologia
D-Link Advanced Certification - Switching/Wireless
Cisco Certified Network Associate
Cisco IronPort Certified Security Professional - E-Mail/Web

Fatman

  • Level 9 Member
  • ****
  • Posts: 1675
Re: Word based blacklists
« Reply #1 on: April 15, 2010, 11:09:08 AM »
You mean as part of a URL or what?

If you mean as part of a URL then just create a blacklist for *verboten* where verboten is the forbidden word.

I don't think I am understanding your difficulty fully, please be more verbose.
Logged
non progredi est regredi

fernando.w

  • Level 1 Member
  • *
  • Posts: 10
    • Dígitro Tecnologia
Re: Word based blacklists
« Reply #2 on: April 16, 2010, 10:22:16 AM »
Hello Fatman,

I'm deploying a project to substitutes a Linux Firewall/VPN/Proxy solution that uses the Squid software to make web access restrictions. One of the the funcionalities of the Squid is to use a word-based blacklist to block web pages.

I did some tests with your suggestion and I think that it will work fine.

But if I to need to add more words to this blacklist, it can be do through a script?

There is some document that shows how build scripts for tasks automation?

Best regards,
Logged
Fernando Willemann
Dígitro Tecnologia
D-Link Advanced Certification - Switching/Wireless
Cisco Certified Network Associate
Cisco IronPort Certified Security Professional - E-Mail/Web

danilovav

  • Level 4 Member
  • ****
  • Posts: 424
  • Alexandr Danilov
Re: Word based blacklists
« Reply #3 on: April 16, 2010, 12:24:49 PM »
Code: [Select]
set ALG_HTTP http-outbound
cc ALG_HTTP http-outbound
add ALG_HTTP_URL Index=1  URL=*odnolkassniki.ru/* -silent
Logged
BR, Alexandr Danilov

fernando.w

  • Level 1 Member
  • *
  • Posts: 10
    • Dígitro Tecnologia
Re: Word based blacklists
« Reply #4 on: April 16, 2010, 01:05:32 PM »
Thanks for answer danilovav! I Will test my environment with your tip and then report here.

Best regards,
Logged
Fernando Willemann
Dígitro Tecnologia
D-Link Advanced Certification - Switching/Wireless
Cisco Certified Network Associate
Cisco IronPort Certified Security Professional - E-Mail/Web

gracoat

  • Level 1 Member
  • *
  • Posts: 2
Re: Word based blacklists
« Reply #5 on: April 21, 2010, 10:46:45 AM »
I have a DFL-210 set up in my school.  My school has a policy to block certain keywords.  facebook being one of them.
So, I programmed the router to do so using the http-outbound ALG setting keyword.

My students have found an interesting way around it.
When they type http://www.facebook.com they get the "Forbidden" page.
When they type https://www.facebook.com they get facebook!

I've tried applying the ALG to https service, but it doesn't work.
What do I do to apply my keywords list to secure websites?
-Graham
Logged

Fatman

  • Level 9 Member
  • ****
  • Posts: 1675
Re: Word based blacklists
« Reply #6 on: April 21, 2010, 01:55:10 PM »
You can't filter the URL inside a HTTPS packet as it is encrypted using SSL.  You will need an HTTPS proxy doing some man in the middle tricks to get inside SSL to my knowledge.
Logged
non progredi est regredi