Cyberoam Knowledge Base


Advanced Search

Table of Contents

. . . . . . . . . . . . .

What's New

Knowledge Base Information

Cyberoam UTM

Product Literature

Best Practices & Policies

Protect Your Cyberoam Appliances from Power Fluctuations

Block Browser-based File Transfer

Allow Only Specific YouTube Videos

Block Gmail Web Chat

Import Domain Names and Keywords into Custom Web Filter Category

Block High Risk Applications with Cyberoam’s Proactive Protection Model

Implement Content Filtering on IM Applications

Configure Web Filter Policy

Update Web Category Database

Allow File Category Access to a Specific WebSite

Apply Schedule on a Specific Web Category in Cyberoam

Block File Transfer Between Yahoo/MSN Users

Block Internet Download Manager (IDM) in Cyberoam

Block Compressed Files on SMTP Traffic

Block Email Attachments Over SMTP

Block Facebook in Skype

Block Video Files in Cyberoam

Block LinkedIn Applications in Cyberoam

Block Facebook Applications in Cyberoam

Block a Specific File Type in Web Category in Cyberoam

Block P2P Applications in Cyberoam

Allow Specific URL from Blocked Category

Block URL for Specific User

Block HTTP/HTTPS Upload

Block Webcam Between Yahoo/MSN Users

Deny IM Login for Yahoo / MSN Users

Block Conversation Between Yahoo/MSN Users

Firewall

Identity-based Policies

IPS

Logs & Reports

Multiple Gateway - Load Balancing and Failover

Quality of Service (QoS)

Web Application Firewall (WAF)

Wireless LAN

Configure Wireless WAN

TroubleShooting

Visio Stencils

Glossary

Product Technical Support

Compatibility

Cyberoam Virtual UTM

Endpoint Data Protection

Cyberoam SSL VPN

Cyberoam iView

Cyberoam Central Console

Cyberoam's On-Cloud Management Service

Block a Specific File Type in Web Category in Cyberoam

Applicable to Version: 10.00 onwards

Requirement

To block a specific file type in web category in Cyberoam.

Cyberoam provides default categories, which can be used to block the malicious and objectionable contents. Category is a grouping of URLs. When we block the category, access to all the URLs get blocked.

In this article, a hypothetical example is illustrated to block specific file type i.e (Executable Files) in web category (WebBasedEmail) in Cyberoam. If you want to allow WebBasedEmail category and deny executable file from WebBasedEmail category, then specify Allow action for WebBasedEmail category and add Executable File in Exception list.

This document explains to block specific file type category (E.g. .exe etc) from WebBasedEmail category, but allow this file type for other categories.

Prerequisite

Web and Application Filter Module Subscribed

Solution

The entire configuration is to be done from Web Admin console. Access Web Admin console with user having “Administrator” profile.

Step 1: Create Web Filter Policy

Here Specific File Type (.exe) has been blocked for WebBasedEmail Category for user ‘John’ and has been allowed for all other categories.

Go to Web Filter à Policy à Policy and click “Add” button to create a Web Filter Policy with the following parameters.

Parameters	Value
Name	BlockEXEFiles
Template	Allow All Allows access to all WebBasedEmail except the specific file type (.exe).
Enable Reporting	Enable

Click OK and the Web Filter Policy ‘BlockEXEFiles’ will be created successfully.

Note:

You can also define file type policies to define different levels of access for different users to meet your organization’s requirements.

Step 2: Add Web Filter Policy Rules

Go to Web Filter à Policy à Policy and click on ‘Add’ button to add web filter policy rules. Click the Edit icon

in the Manage column against the Web Filter Policy to which rules are to be added.

Parameters	Value
Category Type	Web Category Select Web Category from the list of available categories.
Category	WebBasedEmail Note* - Select the Category “WebBasedEmail” from the list of Default Categories. Select the Category on which you want to restrict executable files.
HTTP and HTTPs Action	Allow
Exception	File Type Category – Executable Files Click to add the file type category exception rule for a selected category type and select file type category.
Schedule	All the Time Schedule defines a time schedule for applying the rule.

Click OK and the Web Filter Policy Rule will be added successfully.

Step 3: Apply Web Filter Policy to User

Go to Identity à Users à User

Select user to apply Web Filter policy created in Step 1.

Under Policies Section, select ‘BlockEXEFiles’ for Web Filter

Click OK button to update

Above configuration will restrict File Type Category i.e .exe on Web Category – WebBasedEmail for user ‘John’ and would be allowed for all other categories.

Note

In this article policy has been applied on user. Policy can also be applied on Groups and Firewall.

Document Version: 1.0–29/08/2011

Attachments
	How To - Block a Specific File Type in Web Category in Cyberoam.pdf

Article ID: 2033