This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

File blocking. is it possible to allow exceptions?

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

File blocking. is it possible to allow exceptions?

Go to solution
SOC_CSG
L4 Transporter

‎02-21-2017 01:01 AM - edited ‎02-21-2017 01:02 AM

Hi all

 

One of my end clients has a File-Blocking profile which block all .EXES files but he needs from an specific website to download a EXE file. Is it possible like in URL profile to add an exception and allow the download?

 

best regards

 

Acuntia COS

0 Likes Likes
1 accepted solution

Accepted Solutions

Go to solution
santonic
L6 Presenter
In response to SOC_CSG

‎02-21-2017 04:11 AM

But the specific profile (which allows EXE) would be limited to just one site. Isn't that restrictive enough?

With custom URL category you could maybe restrict to only one path on this site as well. 

 

However if he really wants to allow just one single EXE file allowed that would require exceptions by file hash which isn't possible I'm afraid.

 

View solution in original post

0 Likes Likes
4 REPLIES 4

Go to solution
santonic
L6 Presenter

‎02-21-2017 01:32 AM

Make a rule which allows access to that particular website and put a file blocking profile which allows downloads of EXE files on it (or don't put any file blocking profile on it). Make sure it's above current rule.

Go to solution
SOC_CSG
L4 Transporter
In response to santonic

‎02-21-2017 02:12 AM

Hi Santonic

 

The problem is the end-client doesn't want to remove the EXE from the Fileblocking profile. I already suggest what yo said but he doesn't like it

 

best regards

 

 

0 Likes Likes

Go to solution
santonic
L6 Presenter
In response to SOC_CSG

‎02-21-2017 04:11 AM

But the specific profile (which allows EXE) would be limited to just one site. Isn't that restrictive enough?

With custom URL category you could maybe restrict to only one path on this site as well. 

 

However if he really wants to allow just one single EXE file allowed that would require exceptions by file hash which isn't possible I'm afraid.

 

0 Likes Likes

Go to solution
SOC_CSG
L4 Transporter
In response to santonic

‎02-21-2017 04:58 AM

That's what I said to the end-client but doesn't like it. But he will have to do it, there's no option.

 

Thanks for your help

0 Likes Likes
  • 1 accepted solution
  • 12086 Views
  • 4 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks