How do I block the website like I am using NS5GT. I tried all kind of port and configure but still I can go to yahoo website.
Thanks,
Richard
Thanks,
Richard
Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Need Help
- Thread starter MRJUL
- Start date
- Thread starter
- #3
- Thread starter
- #5
- Thread starter
- #7
Yes DNS server is done on netscreen,But When you said "You can either leave it blank or create an "A" record that points to 127.0.0.1." where I should create this?
I did create under network and Zone but still can't filter yahoo website.
Thanks,
Richard
I did create under network and Zone but still can't filter yahoo website.
Thanks,
Richard
- Thread starter
- #8
Hello John,
I got everything setup including the policies, but Still Couldn't block the website. I put DNS 0.0.0.0 and 2nd DNS 0.0.0.0 , what suppose to put?
btw, if I put the block website policies first and 2nd for any, everything don't go any website.
Thanks,
Richard
I got everything setup including the policies, but Still Couldn't block the website. I put DNS 0.0.0.0 and 2nd DNS 0.0.0.0 , what suppose to put?
btw, if I put the block website policies first and 2nd for any, everything don't go any website.
Thanks,
Richard
- Thread starter
- #10
Hello John,
Where should I put the local DNS? can you specify?I put on netscreen 192.168.1.2 and 2nd DNS I put 192.168.1.1
then I create the group, then I make from trust to untrust.
but still... did I do something wrong?
Thanks for helping
Richard
Where should I put the local DNS? can you specify?I put on netscreen 192.168.1.2 and 2nd DNS I put 192.168.1.1
then I create the group, then I make from trust to untrust.
but still... did I do something wrong?
Thanks for helping
Richard
- Thread starter
- #11
- Thread starter
- #12
Hi John,
How Do I change the error message? I appear "Error! Your firewall can't talk to the URL Screening Server. Please contact your system administrator for help. "
I did change on the URL Filtering but the Message don't change.
Thanks,
Richard
How Do I change the error message? I appear "Error! Your firewall can't talk to the URL Screening Server. Please contact your system administrator for help. "
I did change on the URL Filtering but the Message don't change.
Thanks,
Richard
- Thread starter
- #14
Hey,
Are you looking to block an internal range 192.168.2.1-.199 to the internet? And permit 192.168.200-244 to the internet?
Range of IPs aren't supported on the Netscreen for Policy use. You can use subnets though, but I'm guessing you're using 192.168.2.x/24. All hosts on the same subnet...
You can create a number of local Hosts (using IP addresses) in the Trust Zone, and then define a group for policy. But, as you already guessed, this is a lot of objects!
I would either use a VLAN at layer 2 on your LAN or create another subnet internally for use with Policy. Each of these options would require additional overhead though.
Hope this helps.
Rgds,
John
Are you looking to block an internal range 192.168.2.1-.199 to the internet? And permit 192.168.200-244 to the internet?
Range of IPs aren't supported on the Netscreen for Policy use. You can use subnets though, but I'm guessing you're using 192.168.2.x/24. All hosts on the same subnet...
You can create a number of local Hosts (using IP addresses) in the Trust Zone, and then define a group for policy. But, as you already guessed, this is a lot of objects!
I would either use a VLAN at layer 2 on your LAN or create another subnet internally for use with Policy. Each of these options would require additional overhead though.
Hope this helps.
Rgds,
John
- Thread starter
- #16
John,
Yes I think a lot of object if I put this way, Do you know if you can create the user name and password on the advance policy?
How do I create the authentication user and password on the advance policy?
I do check the authentication on the advance policy and I go to the website that I block
and popup the user name and password
Thanks,
Richard
Yes I think a lot of object if I put this way, Do you know if you can create the user name and password on the advance policy?
How do I create the authentication user and password on the advance policy?
I do check the authentication on the advance policy and I go to the website that I block
and popup the user name and password
Thanks,
Richard
- Thread starter
- #18
John,
Yes I think I am going to use Auth web page permit. I config the authentication on advance policy, it's popup the use name and password. but after I put everything user and password it goes well to the website but the problem is not every time I go to that site asking me the user and password. that's wired.
Thanks,
Richard
Yes I think I am going to use Auth web page permit. I config the authentication on advance policy, it's popup the use name and password. but after I put everything user and password it goes well to the website but the problem is not every time I go to that site asking me the user and password. that's wired.
Thanks,
Richard
Hello,
It's my understanding that once you Auth, all Internet requests after that should be permitted.
Are you saying that this functionality breaks over time? Could be a time-out issue on your Auth settings. What do you think?
Rgds,
John
It's my understanding that once you Auth, all Internet requests after that should be permitted.
Are you saying that this functionality breaks over time? Could be a time-out issue on your Auth settings. What do you think?
Rgds,
John
- Thread starter
- #20
- Status
Similar threads
- Locked
- Question
- Locked
- Question