02-12-2025 10:43 PM
Hi Team,
Recently, I had to allow an internally developed android and IOS for users that are allowed and not allowed to access internet.
this app "externally hosted internally developed" role is consisting of destination IPs and web-browsing app.
For the android side, it didnt work untill I allowed the Google-base app in a separate "destination any" too role.
I wanted to know, what are conciquences of having google-base app allowed for any source "even I have to keep few of them blocked of internet", knowing that I have tested the android device and its still cant open any other google app "Youtube, gmail..etc" facebook...etc.
is that Ok, or there is a better way to block internet but not this internal app
We dont apply any decryption in this network.
Panos ver 11.1.4-h7
02-14-2025 09:18 AM
Hello,
It depends on what your overall goal is. I also restrict access from my internal systems out to the internet. Knowing what your over all strategy is, could help us provide a more specific response.
What I do is a multi layered approach. While the application maybe required, I also rely on DNS and URL filtering to restrict access to the internet.
Regards,
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
