Blocking Google Games

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Blocking Google Games

L1 Bithead

Has anyone had any success in blocking the Google browser based games yet?  I have seen a few threads with no answers.

 

I'm going to bust out the Fiddler and see where it is going during this but I don't want to interfere with normal users and their Google searches.  I was thinking there would be an app-id for it but I may have to find domain name that it is using.

1 accepted solution

Accepted Solutions

Blocking snake was the easiest so far, threat signature..medium threat and drop it...I never truly realized the depth of games that exist in the browser for Chrome.

 

I might need to chalk this one up for management to actually manage their people.

 

Appreciate the help all.

 

**UPDATE**

 

So far I've been able to block all the games, set up Fiddler and used the /fnbx/snake_arcade as my base and worked backwards.

 

I created a threat signature with three or conditions.

http-req-uri-path /fnbx/snake_arcade

http-req-uri-path /logos/2010/pacman10-hp.html

http-req-uri-path /logos/fnbx (This one seems to be the one to kill all of them.)

 

Once I added that third site, any of the ones google offered failed to load.  The driedel game loaded but nothing actually happened.

 

Thanks for the tip all..hopefully this helps.

View solution in original post

8 REPLIES 8

Cyber Elite
Cyber Elite

@tom.mccomb,

That's because you won't really find a good way to block them. For example the snake_arcade game loads all of its elements directly from www.google.com. You could utilize '/fnbx/snake_arcade/' in a custom threat signature a guess, if you're doing full decryption in your environment, but you would have to do this for every game Google has. 

Cyber Elite
Cyber Elite

Hello,

Have you tried blocking with URL filtering and application filtering?

image.pngimage.png

 

Yes this blocks them all, but its lost productivity 🙂

We are doing full decryption so this might be an option.  Going to throw some tests at that.

Blocking snake was the easiest so far, threat signature..medium threat and drop it...I never truly realized the depth of games that exist in the browser for Chrome.

 

I might need to chalk this one up for management to actually manage their people.

 

Appreciate the help all.

 

**UPDATE**

 

So far I've been able to block all the games, set up Fiddler and used the /fnbx/snake_arcade as my base and worked backwards.

 

I created a threat signature with three or conditions.

http-req-uri-path /fnbx/snake_arcade

http-req-uri-path /logos/2010/pacman10-hp.html

http-req-uri-path /logos/fnbx (This one seems to be the one to kill all of them.)

 

Once I added that third site, any of the ones google offered failed to load.  The driedel game loaded but nothing actually happened.

 

Thanks for the tip all..hopefully this helps.

Hi

We have been scratching our heads on how to stop Google games.

How do you set up your palo alto to block snake, pacman e.t.c. ?

I.e. how do you create threat signatures e.t.c.


@HWAAcademy wrote:

Hi

We have been scratching our heads on how to stop Google games.

How do you set up your palo alto to block snake, pacman e.t.c. ?

I.e. how do you create threat signatures e.t.c.


 

 

@HWAAcademy  @tom.mccomb  Provided what he did:

 

"

So far I've been able to block all the games, set up Fiddler and used the /fnbx/snake_arcade as my base and worked backwards.

 

I created a threat signature with three or conditions.

http-req-uri-path /fnbx/snake_arcade

http-req-uri-path /logos/2010/pacman10-hp.html

http-req-uri-path /logos/fnbx (This one seems to be the one to kill all of them.)

 

Once I added that third site, any of the ones google offered failed to load.  The driedel game loaded but nothing actually happened."

 

This would be a custom IPS signature.

Thank you this worked.

Really appreciate the help 🙂

 

L2 Linker

Hello,

 

You can block Google browser based game using Decryption and custom URL Filtering:
(Im going to asume that you have already configured Decryption feature)

 

-Create a Decryption rule that match with www.google.com traffic

-Create a Custom URL filtering that matches with www.google.com/logo and www.google.com/xjs (while you play at the browser, press f12 to see the resources that are needed to run the game)

-Block this Custum URL Filter in the URL Filter profile that is used by your users

PCNSE (2019-2021)
https://www.linkedin.com/in/hha1
  • 1 accepted solution
  • 21710 Views
  • 8 replies
  • 1 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!