DrayTek UK Users' Community Forum

Help, Advice and Solutions from DrayTek Users

EXE blocking on 2820n FW 3351

  • davidmatthewson
  • Topic Author
  • Offline
  • Junior Member
  • Junior Member
More
06 Apr 2011 12:10 #67143 by davidmatthewson
EXE blocking on 2820n FW 3351 was created by davidmatthewson
Hi

I'm trying to block users from d/l EXE & COM files from the 'net which runs via a 2820n with 3351 firmware.

But can't get it to work at all.

I've set the Objects Setting >> File Extension Object Setup to block exe & com and then created a filter in CSM >> URL Content Filter Profile which uses the File Extension Profile I defined but I can still go to, say, htttp:\\servername\test.exe and d/l it with no problems.

So, (I) HAS ANYONE GOT THIS TO WORK? & (ii) if so, how?

Thanks

David

Please Log in or Create an account to join the conversation.

More
06 Apr 2011 13:18 #67144 by voodle
Replied by voodle on topic Re: EXE blocking on 2820n FW 3351
you need to apply it from the Firewall - General Setup page as well, just select the App enforcement profile you've made and that should work.

Please Log in or Create an account to join the conversation.

  • davidmatthewson
  • Topic Author
  • Offline
  • Junior Member
  • Junior Member
More
06 Apr 2011 14:01 #67146 by davidmatthewson
Replied by davidmatthewson on topic Re: EXE blocking on 2820n FW 3351
Thanks for the prompt reply - good thinking! (Draytek need to make a flowchart to help idiots like me follow the 'linkage' of the various filters.)

Anyway, if I now switch URL Content Filter in Firewall >> General Setup = ON and try a site with http://www.servername\test.exe I can still d/l it...

I would have expected the 2820 to block it....

Any more ideas pls?

Thanks

David

Please Log in or Create an account to join the conversation.

  • davidmatthewson
  • Topic Author
  • Offline
  • Junior Member
  • Junior Member
More
06 Apr 2011 14:19 #67147 by davidmatthewson
Replied by davidmatthewson on topic Re: EXE blocking on 2820n FW 3351
Bad form to reply to one's own posts but....

I wandered off to get a coffee and just retried clicking on the same EXE file link and it gets blocked with the default warning message.

Good.. but...

If I click a second time I can d/l it.. I can also d/l other EXEs..

So it seems like some temporal thing going on as well.

Has anyone got this to work reliably? - and reliable is essential for a security device...

David

Please Log in or Create an account to join the conversation.

Moderators: Sami