Allow only company Twitter page

book

Article ID: 166680

calendar_today

Updated On:

Products

Advanced Secure Gateway Software - ASG ProxySG Software - SGOS

Issue/Introduction

Allow only the company Twitter page for HTTPS and HTTP while blocking the remainder of Twitter.

Resolution

To allow only a company Twitter page, SSL Interception and decryption is required. For a review on how to correctly implement SSL, refer to the following knowledge base articles:

· for explicit deployment:

Configuring SSL Interception For Explicit proxy 

· for transparent deployment:

Configure Transparent SSL forward proxy with authentication 

The following scenario has a total of three Layers:

  • SSL Intercept Layer
  • Two Web Access Layers

As the image below shows, the SSL Intercept Layer intercepts Social Networking as a category:

The next Layer called Twitter_denied blocks all traffic to Social Networking categories:

Finally, the last Layer called Twitter_Allow permits access only to a corporate Twitter page:

To Allow a company's Twitter page as shown, complete the following steps :

1. Create a Combined Destination Object with the following URLs (in this scenario, the Object was called Combined_Twitter) as shown below:

ssl://twitter.com
tcp://twitter.com
tcp://abs.twimg.com
https://abs.twimg.com
tcp://si0.twimg.com
https://si0.twimg.com
http://twitter.com/myTwitterpage
https://twitter.com/myTwitterpage

Note: Make sure to replace "myTwitterpage" with the corporate Twitter page of intended for the last two URLs.

The URLs added in the preceding step were created as Request URL Objects (as shown below):

After completing these steps, Install the policy.

 

 

Attachments