Import EDL external blocklist, blacklist to ProxySG/EdgeSWG with use of Local Database
search cancel

Import EDL external blocklist, blacklist to ProxySG/EdgeSWG with use of Local Database

book

Article ID: 282375

calendar_today

Updated On:

Products

ASG-S200 Advanced Secure Gateway Software - ASG ASG-S400 ASG-S500 ISG Proxy ProxySG Software - SGOS SG-S400

Issue/Introduction

Customer would like to have ability to fetch an EDL external blocklists automatically to SGOS and use them in the Visual Policy Manager for rulesets.

Lists will contain IPv4, IPv6 and domain addresses.

 

Example PUBLIC 3rd party EDL (External Dynamic Lists) blocklists syntax:

192.168.216.59

192.168.185.105

192.168.136.122

[…]

Environment

ProxySG/Edge SWG: 7.3.x, 7.4.x (SGAC interface)

Cause

Edge SWG (ProxySG) has no functionality for a user to add dynamic IP/domain lists in EDL format from external sources without converting the list format to SGOS supported Syntax for the correct implementation into VPM.

Resolution

In order to use an external EDL blocklist you would need to follow:

 

STEP1

Convert the any EDL blocklist to a proper syntax format in a text file stored on an external server in your local network – LOCAL DATABASE

 

Example file stored on external server: http://192.168.1.11/example.txt with proper syntax

define category HTTP_whitelist

      broadcom.com

      symantec.com

      support.broadcom.com

end

 

define category example

      broadcom.com

      symantec.com

      support.broadcom.com

      '[####::###:##:##:#]'

      '192.168.23.11'

end

 

PLEASE NOTE: you can define as many categories that you like under one file and use unique defined name of the category in your Policy VPM rulesets

 

STEP2

Add the local database to the configuration of your each Edge SWG by going to Proxy > Administration > Data & Cloud Services > Content Filtering > Add Local database. Then please enable local Database, put a name for local database, put a url string for the file (ex. http://<external-server>:<port>/example.txt ) and hit on save and hit Apply > Save.

 

STEP3

Go back to Edit of your newly created local database, please adjust check for updates time (by default update is made each 5min) and test the download

 

Correct download output:

 

STEP4

After the database is downloaded by Edge SWG SGOS you may use the defined custom category with desired set of rules

Example:

  • Web Access Layer
  • Source: <any> or defined
  • Destination: Add new Object > Request URL Category > <name of the local database> > <name of defined category>
  • Action: Allow or Deny

 

Additional Information

Powered by Wolken Software