Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Blocking HTTP Download
- Thread starter andysk
- Start date
- Thread starter
- #2
you could use an access-list, but that would block a lot of needed communication. Remember, downloading from a site uses HTTP or FTP. So, if you block those on an inside interface, all traffic for thos protocols would be blocked. If you try to block it on the outside interface, you would have to know which return port was being used (remember, the connection was initiated from inside).
I don't think the firewall would be the place to block this; a GPO in Windows would serve the purpose much better.
John
<lots of meaningless certifications here>
I don't think the firewall would be the place to block this; a GPO in Windows would serve the purpose much better.
John
<lots of meaningless certifications here>
watchguardmonkey
Technical User
Hi,
When I went to school http was a tcp connection and hence if established from the trusted LAN and http was allowed from said trusted LAN, a dowload as you say, cannot be blocked, if you are allowing raw http from the trusted LAN, can you please be more specific in your question, is it activeX or java applets that your trying to block?
cheers,
WGM
When I went to school http was a tcp connection and hence if established from the trusted LAN and http was allowed from said trusted LAN, a dowload as you say, cannot be blocked, if you are allowing raw http from the trusted LAN, can you please be more specific in your question, is it activeX or java applets that your trying to block?
cheers,
WGM
- Thread starter
- #6
Hi all,
Since internet bandwidth on my country is still very expensive, I tried to reduce internet traffic by avoiding download files like EXE, RAR, ZIP, MPEG, MP3, etc, which are consuming a lot of bandwidth.
To accomplish that, I had blocked FTP and the rest of ports on my firewall, except port 80 (HTTP). However, right now most of the websites are also provide HTTP Download. Perhaps somebody can share how to setting HTTP download blocking on my PIX firewall or any other way to accomplish that.
Thanks,
Andy
Since internet bandwidth on my country is still very expensive, I tried to reduce internet traffic by avoiding download files like EXE, RAR, ZIP, MPEG, MP3, etc, which are consuming a lot of bandwidth.
To accomplish that, I had blocked FTP and the rest of ports on my firewall, except port 80 (HTTP). However, right now most of the websites are also provide HTTP Download. Perhaps somebody can share how to setting HTTP download blocking on my PIX firewall or any other way to accomplish that.
Thanks,
Andy
- Status
Similar threads
- Locked
- Question
- Locked
- Question
- Locked
- Question