1. Home
  2. Networking Firewalls
  3. web mail pages lock

web mail pages lock

Some firewalls can resolve names and using hostnames you create a deny policy outbound, however, that is not 100% because the firewall most likely will cache that info for a period of time, and most serious email providers that end users are using (hotmail, yahoo, etc.) are using multiple host records, and in that nearest cost in DNS, so while your firewall sees yahoo.com at 1.1.1.1 your end user lookup sees

2.2.2.2 and it won't block it anyway. That's been my experience so it's not 100%

The exception to that is to implement content management at the gateway, either on box or vectoring, and you can do keyword blocking or URL blocking altogether.

Can you dig?

Reply to
Munpe Q
Loading thread data ...

Is there any way to lock access to web-mail pages through a firewall?

Reply to
Koldo Navarro

Yes No Depends on the firewall

Reply to
Mike

Do you mean - Block Access to web mail?

Are you talking about blocking internal users from accessing external web mail systems, or external ones from accessing your internal web mail system?

Reply to
Leythos

Which firewalls can lock web mail pages and how? How do they do it?

Is there any rule (protocol, port, url, etc.) i can use to know a page is a web mail page?

thanks. Koldo.

"Mike" escribió en el mensaje news:cpmml5$k84$ snipped-for-privacy@thorium.cix.co.uk...

Reply to
Koldo Navarro

Web mail is just a regular web page that's being used for showing mail -- there's no standards for this.

On a normal firewall, you'd block the IP addresses of the sites that host web mail.

If using a web proxy that everybody *has* to go through when using a browser, you can filter out certain URL patterns commonly found in webmail applications.

Neither method is foolproof, and need frequent updating of the lists. (Querying your proxy logs for URLs that anyone has accessed more than two days in a row would be one way to find new potential web mail pages to block.)

Regards,

Reply to
Arthur Hagen

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.