Need to block HOTMAIL.COM from a user-Pls Help!!!

[lambe]

I followed the instructions from the previous thread754-345169. I created a new host for the computer I wanted to block.Then created a group including this computer to the Included members. This followed a rule with the following information.
For connections coming in via: LAN(Inside NIC)
From source: HTTP-Block-group
Destined for:Universe*
Coming out via:256k(Outside NIC)
Services:Included Services:http*

This worked alright but it blocked the user from surfing the whole of Internet. I just want to block him from Hotmail.com as he often goes on to a chat room during office hours.
Many thanks for your advanced solution.
Lambe.

 

[rlee1]

instead of using the users IP address, get the hotmail servers IP addresses 64.4.13.xx (they have a few) and create network entities for those IP's

then create a group using those addresses.

then create a rule that stops http* traffic from the inside to those outside IP's using that group

it will block all hotmail http* to all internal users.

 

[rlee1]

instead of using the users IP address, get the hotmail servers IP addresses 64.4.13.xx (they have a few) and create network entities for those IP's

then create a group using those addresses.

then create a rule that stops http* traffic from the inside to those outside IP's using that group

it should block all hotmail http* to all internal users.

 

[lambe]

Many thanks rlee1.

I still used the Host I created from the Network entity from the User's IP address.
I then created a Subnet under Network Entity for MSN Account,with the Chat room IP address.
Then created a rule to Deny Access to Service
For connections coming in via:Inside NIC
From source:Host-IP address of user
Destined for:MSN.com subnet group
Coming out via:Outside NIC
The services included is http*

And this worked.