topic Re: Block Hardcoded IP's containing files in General Topics

Block Hardcoded IP's containing files

taylorguy08 — Tue, 05 Feb 2019 20:54:54 GMT

Hello I am curious if there is a way to block hardcoded IP's containing applications? So I would allow downloads when there is a domain name but not allow the download when it is a IP.

Example: http://x.x.x.x/filename.exe

Re: Block Hardcoded IP's containing files

BPry — Wed, 06 Feb 2019 04:52:15 GMT

@taylorguy08,

One of the biggest limitations I can see with this is you wouldn't really hit the 7 byte limitation of a custom application signature or a custom vulnerability signature to do this properly. URL Filtering by itself to the best of my knowledge also doesn't allow Regular Expression so you couldn't use that directly either.

Re: Block Hardcoded IP's containing files

Raido_Rattameister — Wed, 06 Feb 2019 13:35:11 GMT

Usually (not always) IPs fall into Unknown URL category.

You could try adding rule above your regular rule:

zone - trust > untrust

url category - unknown

file blocking profile - block any unwanted file