1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Content filtering with a Cisco PIX 501??

Discussion in 'Networking' started by scs-04, Sep 22, 2008.

Thread Status:
Not open for further replies.
Advertisement
  1. scs-04

    scs-04 Thread Starter

    Joined:
    Jan 10, 2005
    Messages:
    118
    Let me start by saying I am not real educated in any of Cisco's products. I have just picked up a client that has a PIX 501 that they are using as their router/firewall. They have a couple employees that are 'abusing' the internet access and visiting sites they shouldn't be on at work. Can we do any content filering with the PIX 501 or will we need another device.

    Thanks for any advice
     
  2. -Fabez-

    -Fabez-

    Joined:
    Jul 28, 2008
    Messages:
    1,899
    Edit the users host file, that will stop them :D
     
  3. zx10guy

    zx10guy Trusted Advisor Spam Fighter

    Joined:
    Mar 30, 2008
    Messages:
    6,106
    Looking through the ASA configuration, the only thing I can see which will do this is filtering using a Websense or Secure Computing SmartFilter server. If the ASAs don't have the ability to do this internally, I doubt the 501 will be able to do this. Not even sure if the 501 can leverage an external URL filtering server.

    One alternative for you is to do an nslookup on the domain to resolve the IP of the offending website. Then create an access rule tied to that IP and just set a generic deny on protocol IP. This will just do a sweeping block of the site on that IP. You have to set the rule to be applied from the inside going out with the source IP being any because you just want a generic block across your internal network to a destination of the offending IP.

    Lastly, if it's not already in the company's policy, there should be a code of conduct and appropriate use policy in an employee handbook. If there isn't one already in place, I would strongly suggest your clients put one in place. They should also have a general briefing of the policies and have every employee acknowledge the receipt of the policies and the thorough understanding of the policies along with consequences if they violate the rules. If they continue to violate policies which have been put in place and they are well aware of, then the company should just fire them.
     
  4. scs-04

    scs-04 Thread Starter

    Joined:
    Jan 10, 2005
    Messages:
    118
    Thanks for the responses. They do have a conduct policy in place but it doesn't look like they enforce it too well. Well it is not just one site or certain sites they are abusing it is a bunch of the same type of sites so I was looking for something that could block a broader range. Any suggestions with out replacing the PIX?

    Thanks
     
  5. zx10guy

    zx10guy Trusted Advisor Spam Fighter

    Joined:
    Mar 30, 2008
    Messages:
    6,106
    If they are not enforcing their own policies, trying to solve this problem via an IT solution is just chasing your tail....in my opinion. There's really on so much you can do before someone figures out another way around your countermeasures.
     
  6. -Fabez-

    -Fabez-

    Joined:
    Jul 28, 2008
    Messages:
    1,899
    Like I said before edit thier hosts file. http://en.wikipedia.org/wiki/Hosts_file#Blocking This link contains information on blocking sites, so that would be worth a try. Also you could moniter all of a workers connections using netstat from the command prompt.
     
  7. scs-04

    scs-04 Thread Starter

    Joined:
    Jan 10, 2005
    Messages:
    118
    Thanks.

    What link are you referring to??
     
  8. -Fabez-

    -Fabez-

    Joined:
    Jul 28, 2008
    Messages:
    1,899
    The link I forgot to add, but it is there now, sorry for any confusion :D
     
  9. zx10guy

    zx10guy Trusted Advisor Spam Fighter

    Joined:
    Mar 30, 2008
    Messages:
    6,106
    This is assuming the users don't have local administrator rights to their respective PCs.
     
  10. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Similar Threads - Content filtering Cisco
  1. KKLC
    Replies:
    2
    Views:
    437
  2. KKLC
    Replies:
    6
    Views:
    467
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/752335

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice