Posts

Sophos Firewall: How to block Google consumer accounts

This article explains how to block all web mail except for a certain Google domain. Users will no longer be able to access their private Gmail accounts and can only log onto a Gmail for a custom domain.

The following sections are covered:

How to block web mail

How to block web mail

  1. Navigate to Firewall
  2. Click +Add Firewall rule
  3. Create a firewall rule as shown below:

Google domains

googledomains

Note: Here we chose the pre-made web policy called No Web Mail but any web policy with the category Web E-Mail selected and set to Block will work.

Allow custom Google Domain

  1. Navigate to Web > Policies.
  2. Edit the policy you used in the firewall rule above.
  3. Open up the Advanced Settings option at the bottom of the policy edit screen.
  4. Enable Restrict login domains for Google Apps by checking the box.
  5. Next to Allowed domain(s) type in the domain that is allowed to access Google Apps despite the web mail block.

google domains

 

Reference by Sophos.com

 

Cyberoam announces beta launch for Security as a Service on AWS Cloud

Comprompt-AWS Cloud

Tap into New Opportunities

  • Target AWS Cloud users as new customers
  • Provide Managed Security Services using As-a-Service Model
  • Comprehensive Security for AWS hosted Infrastructure

Gartner’s 2014 Magic Quadrant Report for Unified Threat Management (UTM)

Gartner have once again positioned Fortinet as a leader in the Unified Threat Management (UTM) Magic Quadrant for 2014.

According to Gartner, “The Leaders quadrant contains vendors at the forefront of making and selling UTM products” and “Vendors in this quadrant lead the market in offering new safeguarding features, and in enabling customers to deploy them inexpensively without significantly affecting the end-user experience or increasing staffing burdens.”
Of course, the FortiGate Connected UTM platform supports the comprehensive set of security features you would expect from a market leading UTM solution: Firewall, VPN, IPS, Anti-malware, URL and Application control. But Fortinet’s relentless commitment to innovation takes the FortiGate Connected UTM to the next level. Integrated High-Density Switching (including PoE) and Wireless LAN eliminates the need to deploy standalone switches or wireless controllers, further simplifying your network deployment and reducing management costs.
With Fortinet’s strong commitment to channel and MSSP partners and backed by the award-winning FortiGuard Labs Threat Research team, FortiGate Connected UTM is the ideal solution for SMB and Distributed Enterprise.

Magic Quadrant for 2014.

In Endian Firewall How to Stop Spam service?

Login Endian Firewall

Go to Proxy

Click on POP3

Untick Spam Filter

&

Click on Save

How to Upgrade Cyberoam Firmware from 9.0 version to 10.0version

 

New folder create on desktop and give a name “migrate data”

 

Login cyberoam

 

On dashboard we can see the Software version. Verify the verison  is  9.6.0.78

 

Now upgrading version from 9.6.0.78 to 10.01.0667

 

Take a backup of current cyberoam

 

Go to System

 

Manage Data

 

Backup Data

 

Click on Backup

 

Download backupfile

 

After Download this backup file it’s necessary to migrate data file for using 10.0 version appliance

 

How to migrate data files?

 

 Login into customer account by following link:-
http://v9migration.cyberoam.com/offline-migration/webpages/login.jsp

 

After login successfully

 

Upload backup files

 

Convert into version 10.0

 

Download this migration file to migrate data folder on desktop.

 

Note:- Don’t be afraid when have seen this migration file size is less than original backup files.
Suppose backup file size is 5.6mb and migration file size is 30kb.

 

How to upgrade the version from 9.0v to 10.0?

 

Login into customer account by following link:-
https://customer.cyberoam.com/customermyaccount/webpages/common/customeraccount.jsp

 

Click on “Upgrade”,

 

Select
 “Select for Version 9.x.x.x to current GA Version 10.00.0xxx Firmware” option.

 

Ask for saving 10.01.0667 file

 

save to desktop

 

Now login cyberoam

 

Go to help

 

And click on upload upgrade.

 

Once upgrade 10.01.0667 file upload  is successfully

 

Then click on console tab

 

Login console

 

Select  Menu no 6 for upgrade version ask upgrade cybeoam to Latest  version

 

Choose “y” for yes

 

Then display upgrade from window

 

Choose no “1” for upgraded from the uploaded file

 

cyberoam appliance rebooted automatically.

 

After reboot the appliance

 

Login cyberoam appliance

 

Shown version 10.0.0667

 

Then restore migrate backup

 

Go to system

 

Go to maintenance

 

Go to backup and restore

 

Select path on migrated backup

 

Click on Upload

How to troubleshoot ftp issue with cyberoam

ftp from lan to wan is not working for outside linux server, after creating

LAN – WAN ftp rule and move it to top after dns rule

cyebroam chat support suggested to go thru few documents which i am posting here.

http://kb.cyberoam.com/default.asp?id=60&SID=&Lang=1

http://kb.cyberoam.com/dosearch.asp?Lang=1&SID=

 

How to Update / Upgrade Cyberoam Firmware

The procedure to to update / upgrade Cyberoam firmware is shown as follows

 

Login to your cyberoam with admin rights

on a deshboard you will find linke to download the available updates ,

click and download the updated new version file and store it to anywhere in your pc.

go to system

select maintenance

select firmware

select upload

browse the latest version upgrade file downloaded in your pc.

and press update & boot

this will take some time ……

then after few while click on dashboard

select system -> maintenance -> firmware -> and click on manage of the new version showing on the left. this will ask for reboot.

this will take some time

close your browser

start the browser and login to cyberoam and check you are updated with new cyberoam firmware from your dashboard

Internet site is not open in Endian Firewall?

Open an any internet site following symtomn are come :-

 

 

Solutions :-

In Endian firewall you can create rule for putty access

How to create rule for putty access?
a)Login Endian firewall

b)Click on Firewall tab.

c)In Firewall click on System Access

d)Create rule
Source Address   –  Any
Source Interface   – Any
Services                – ssh (tcp port -22)

Then download  and run putty  on any machine.

put firewall ip address and port(22)

click on ok

in putty login windows are open

put login username and password

then give a following command

root@efq:~ # cd /usr/share/clamav/
rm -Rf clamav-*
rm main.cvd
rm daily.cvd
rm safebrowsing.cvd
curl -O http:// db.local.clamav.net/bytecode.cvd
freshclam
restartclamav

Courtesy :- http://www.efwsupport.com/index.php?topic=2375.0

 

What is a Firewall?

A firewall is a part of a computer system or network that is designed to block unauthorized access while permitting authorized communications.

It is a device or set of devices that is configured to permit or deny network transmissions based upon a set of rules and other criteria.

Firewalls are thus a specialized type of router focusing on specific types of network security functions.

Firewalls can be implemented in either hardware or software, or a combination of both.

Firewalls are frequently used to prevent unauthorized Internet users from accessing private networks connected to the Internet, especially intranets.

All messages entering or leaving the intranet pass through the firewall, which inspects each message and blocks those that do not meet the specified security criteria.

Courtesy :- http://en.wikipedia.org/wiki/Firewall_(computing)

Block URL for Specific User through Cyberoam

Block URL for Specific User
Applicable to Version: 10.0 onwards
Requirement
To block a URL for a specific user
Cyberoam provides default categories, which can be used to block the malicious and objectionable contents. Category is a grouping of URLs. When we block the category, access to all the URLs get blocked. Hence, when we want to block specific URL’s of a category, ,we need to create a Custom Web Category. Custom web category is given priority over default category while allowing/restricting the access. The search result displays custom category name and not the default category name.For an hypothetical example to block URLs www.yahoo.com, www.orkut.com, www.facebook.com and www.youtube.comfor user ‘John’, we need to create a Custom Web Category.Document provides steps on creating custom web category and blocking the access for the user ‘John’.
Prerequisite   Web and Application Filter Module Subscribed
Solution
The entire configuration is to be done from Web Admin console. Access Web Admin console with user having “Administrator” profile.   Follow the below given steps to create a customized Web Category & block a URL for user ‘John’:
Step 1: Add Custom Web Category   E.g.: Create a Custom Web Category to block URLs www.yahoo.com, www.orkut.com, www.facebook.com and www.youtube.com for user ‘John’   Go to Web Filter –> Category –> Categoryand click “Add” button to create custom Web Category i.e. “BlockCategory”

Parameters Value
Name BlockCategory
Classification UnHealthy
Domain/Keyword www.yahoo.com,www.orkut.com, www.facebook.com, www.youtube.comNote* – Mention the name of the domains which needs to be blocked

Step 2:  Add Web Filter Policy

Go to Web Filter à Policy à Policy and click “Add” button to create a Web Filter Policy “BlockCategoryPolicy”

Parameters Value
Name BlockCategoryPolicy
Template Allow All
Enable Reporting Enable

Click ‘OK’ button to create a Web Filter Policy.

On successful creation of web filter policy, page navigates back to Manage page. From that page, edit the policy to add the categories.

Parameters Value
Category Type Web Category
Category BlockCategoryNote* – Select the Category “BlockCategory” as created in Step1.
HTTP and HTTPs Action Deny
Schedule All the Time

Click Add button and the Web Filter policy rule will be created successfully as shown in the below snapshot:
Step 3: Apply Web Filter Policy to User 

  • Go to Identity à Users à User
  • Select user to apply Web Filter policy created in Step 2.
  • Under Policies Section, select ‘BlockCategoryPolicy’ (Step2) for Web Filter
  • Click OK button to update 

Above configuration will block access to yahoo.com, orkut.com, facebook.com, and youtube.com for user ‘John’. 

Portfolio Items