File blocking Profile on File Sharing Applications

Reply
Highlighted
L1 Bithead

File blocking Profile on File Sharing Applications

Hello Guys

We have a security policy which goes with application & service any any to the internet. (that's another topic ;) ) We want to block specific file types for downloading (.exe as an example). In the File blocking Profile we defined applications to any, configured the needed file types and set the action download to block. When we test downloads with the web application "wetransfer", we are still able to download .exe files over the configured security policy. Is file blocking not working with specific applications?

Thanks in advance :)

Tags (1)
L4 Transporter

Re: File blocking Profile on File Sharing Applications

Howdy

 

The app wetransfer is using client-certifcates.  The FW cannot decrypt (if you have decryption or SSL forward proxy enabled.   So the FW cannot see/inspect any files.

 

Confirm this by looking at Device--> Certificate Management --> SSL Decryption Exclusion and search for wetransfer.

 

Recommendation may be to consider to DENY wetransfer, and find a different application to use, something the FW can decrypt, because you MUST have SSL Forward Proxy configurations to see inside of the tradtional SSL packets.

 

Thanks.

 

 

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!