Block Domain on NGFW

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Block Domain on NGFW

L2 Linker

Hello,

 

can you anyone let me know how i block access based on domain name, e.g. i want a rule to allow all SMTP inbound except from domain testblock.com, how do i do this?

 

Thanks

 

Ryan

2 accepted solutions

Accepted Solutions

You can try to use FQDN name (Object -> Addresses - Add type FQDN).  And use this object as source/destination.

View solution in original post

@aaobuhov,

I don't ever recommend using an FQDN object when you're talking about SMTP traffic. If this domain was hosted on Microsoft for example you could end up blocking way more traffic then you intend. 

View solution in original post

6 REPLIES 6

L7 Applicator

you will need 2 rules, one to allow all SMTP but just before that you need a rule to block SMTP from testblock.com.

Hi, thanks for response.

 

the query i guess was more around how do i referenc the testblock.com domain in a rule?  as its not Web traffic i assume i cannot use URL Category etc, so how can i block a whole domain based on domain name, not IP, would need to PA to do some DNS work somehow. 

You can try to use FQDN name (Object -> Addresses - Add type FQDN).  And use this object as source/destination.

@aaobuhov,

I don't ever recommend using an FQDN object when you're talking about SMTP traffic. If this domain was hosted on Microsoft for example you could end up blocking way more traffic then you intend. 

thanks, i did not think of looking on the drop down, this was what i was after so thanks again.

That is a very good point, thank you for your response, i will have to re-think this one!

  • 2 accepted solutions
  • 9132 Views
  • 6 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!