This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

Blocking Western Digital MyCloud

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Blocking Western Digital MyCloud

jhickey
L3 Networker

‎03-08-2017 10:01 AM

When you purchase a Western Digital Mycloud device, it comes with the ability to share this data from anywhere. I dont know exactly how they do this. I am assuming the drive/NAS calls out to a MyCloud website, nails up a connection, and allows remote users to ride this connection back to access the data. So far I havent been able to get details of exactly how this works. 

 

We are a highly regulated company and need to block this traffic. Anyone come across this ? Have any luck blocking it ? 

0 Likes Likes
4 REPLIES 4

OtakarKlier
Cyber Elite
Cyber Elite

‎03-08-2017 10:05 AM

Hello,

Start with the Traffic logs to see how its communicating out, application, IP, etc. If there is an application teh PAN recognizes, block that APP with a security Deny rule. Then check the URL logs to see if the destination IP correlates to a URL. If yes then you can block that URL with a Custom URL category, i.e. URL's to block, and add it in there with a deny rule. If no and its an IP hunt, try contacting WD and see if they they ahve alist of IP's they use and block that group.

 

That's how I would start.

 

Hope it helps.

0 Likes Likes

BPry
Cyber Elite
Cyber Elite
In response to OtakarKlier

‎03-08-2017 11:47 AM

I'm not actually positive that they themselves host the data, I'm pretty sure they don't. From what I remember from looking at it the app essentially relies on UPNP to create a port to the WD, then the webservers that they connect to simply keep track of the information for you. I would be interested in knowing if this is actually working right out of the gate, my gut is telling me that you'll find it likely doesn't work already. 

0 Likes Likes

Brandon_Wertz
L6 Presenter
In response to BPry

‎03-09-2017 06:54 AM

One way you could potentially (probably the easiest too) block the functionality of this site is to create a custom URL object with the site(s) that a user connects to the "WD MyCloud."  You could then create a file blocking profile which blocks the ability to upload or download to any file / any application and attach this file blocking profile to a security rule using both these custom objects.

nextgenhappines
L4 Transporter

‎03-09-2017 04:37 PM

@jhickey  If this drive only needs to be available on that specific subnet?  If that is the case, can you just assign a static ip address to it without a default gateway and dns setting ?

 

You may want to check with your internal IT security team as well.  What is the risk to your company?

 

0 Likes Likes
  • 4006 Views
  • 4 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks