Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 1 subscriber
  • Views 1186 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Endpoint Security

magesh

We are testing the Sophos Enterprise Console version 5, how to implement firewall policy for laptop user while they disconnected from our network. If they connect private internet and transfer the files from office laptop to third party storage provider. How can we block the file transfer for this scanario?. Kindly confirm how to implement this test case.

Thanks N regards,

Magesh Kumar .P

:22873


This thread was automatically locked due to age.
  • 0

    Hello Magesh,

    a firewall (SCF or other) likely won't help you here (unless you completely block internet access). The reason is that firewall rules are usually address based (even though you can enter host or network names) because "real-time" name resolution is not feasible. With the ever increasing number of providers (some of which use large distribution networks) it is impossible to compile a list of all and all their addresses. While a firewall can be used to block certain applications (i.e. executables) it'd be all but impossible to control transfer via browsers.

    SESC offers two features which are probably better suited to tackle your problem: One is Application Control with which, among others, a number of Online Storage applications can be blocked. It also makes it possible to specify which browser(s) is/are permitted. The other is Data Control which can block uploads for certain browsers and IMs.

    HTH

    Christian

    :22883
  • 0

    In fact we just posted a KBA article on this very topic: http://www.sophos.com/support/knowledgebase/article/117053.html

    Note: there is a quirk in the way some web applications react to the way in which Data Control intercept files for analysis. If the data control rule action blocks the upload (either due to user selection or an automated block action) it may still look like the file has been uploaded into DropBox but the file is actually an empty stub which contains no data.

    Regards,

    John (Product Manager)

    :22897