Example: blocking network application use
An example of using Network Application elements to block the use of specific network applications.
The administrators at Company A want to allow the use of HTTP in general, but block the use of social media applications from its corporate network. When social media use is detected, the administrators want to redirect users to the corporate security policy page on the company intranet.
The administrators:
- Create a User Response element to redirect dropped connections to the corporate security policy intranet page.
- Add the following Access rules:
Source Destination Service Action Internal networks Not internal
networks expression
Social Media Application Tag Discard Response: User Response to redirect connections to the intranet page
Internal networks Not internal networks expression HTTP Allow - Refresh the firewall's policy.