Example: blocking network application use

An example of using Network Application elements to block the use of specific network applications.

The administrators at Company A want to allow the use of HTTP in general, but block the use of social media applications from its corporate network. When social media use is detected, the administrators want to redirect users to the corporate security policy page on the company intranet.

The administrators:

Create a User Response element to redirect dropped connections to the corporate security policy intranet page.

Add the following Access rules:

Source	Destination	Service	Action
Internal networks	Not internal networks expression	Social Media Application Tag	Discard Response: User Response to redirect connections to the intranet page
Internal networks	Not internal networks expression	HTTP	Allow

Source

Destination

Service

Action

Internal networks

Not internal

networks expression

Social Media Application Tag

Discard

Response: User Response to redirect connections to the intranet page

Internal networks

Not internal networks expression

HTTP

Allow

Refresh the firewall's policy.