This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Windows Live on time schedule

Hi,
new to Astaro, I would like to protect my home network and to limit the children's usage of some apps (like Windows Live).
I found that from "IM/P2P" -> "Instant Messaging (IM)" I can totally block such traffic, even using the "Live" application (not only from the web page).
But how to add a time schedule? I didn't find the way to add a time schedule to the "IM/P2P" protocol filtering...
I would like to block some IPs (I'll not use users auth.) during defined time frames (ex: from 2PM to 6PM). Already tried to define a Filter Action and a Proxy Profile but without success. Should I need to edit and update the Content Filter category for "Information and Communication"?
I'll appreciate any proposal...

Thx!

This thread was automatically locked due to age.

Parents

0 lucky64 over 16 years ago

Thanks a lot for your replies!
I believe I did exactly what Khardeveld proposed, but it seems that the Windows Live client (the application itself) is connecting without using the Astaro Proxy; am I correct?
Cancel
Vote Up 0 Vote Down

Cancel

0 khardeveld over 16 years ago in reply to lucky64

could be several reasons.

It's good practice to have all restrictive profiles first before anything else. You also need to be sure that port 80 isn't allowed on the astaro, or at least your Windows Live client is using proxy to connect.

To see what is happening, you could check the content filter HTTP Live log, which should show you something like this:

2009:08:16-12:53:10 mail httpproxy[1771]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="192.168.1.68" user="" statuscode="302" cached="0" profile="REF_LYvpjxuaVU (Kidsfilter)" filteraction="REF_nPspwiSzCC (limited access)" size="399" time="101 ms" request="0xb2518910"........
2009:08:16-12:53:10 mail httpproxy[1771]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="192.168.1.68" user="" statuscode="200" cached="0" PROFILE="REF_LYvpjxuaVU (Kidsfilter)" filteraction="REF_nPspwiSzCC (limited access)" size="99" time="421 ms" request="0xb2518910"....... 
2009:08:16-12:53:10 mail httpproxy[1771]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="192.168.1.67" user="" statuscode="200" cached="0" profile="REF_LYvpjxuaVU (Kidsfilter)" filteraction="REF_nPspwiSzCC (limited access)"  size="663" time="399 ms" request="0xb253a768" url="messenger.msn.com/.../tabxml.asp
2009:08:16-12:57:31 mail httpproxy[1771]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="POST" srcip="192.168.1.67" user="" statuscode="200" cached="0" profile="REF_LYvpjxuaVU (Kidsfilter)" filteraction="REF_nPspwiSzCC (limited access)"  size="0" time="20327 ms" request="0xb2518910" url="207.46.107.101/.../gateway.dll

The first two requests are just ordinary web pages, the last two are IM traffic which is allowed. In the above example the allowed timeframe is from 12:00 to18:00, so IM and web are allowed, otherwise you would have seen a 'bocked' message.

To be sure, you could also go to HTTP/S -> Content filter, check 'allow content that does not match the criteria below' and the unckeck everything below (effectively blocking everything). Doing this will cause everything that is not allowed in either one of your proxy filters to use the default proxy setting, which in effect will block web- and Windows Live access.

If this still doesn't help, post some entries from your HTTP log showing what is happening when you connect to Windows Live.

Reply

0 khardeveld over 16 years ago in reply to lucky64

2009:08:16-12:53:10 mail httpproxy[1771]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="192.168.1.68" user="" statuscode="302" cached="0" profile="REF_LYvpjxuaVU (Kidsfilter)" filteraction="REF_nPspwiSzCC (limited access)" size="399" time="101 ms" request="0xb2518910"........
2009:08:16-12:53:10 mail httpproxy[1771]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="192.168.1.68" user="" statuscode="200" cached="0" PROFILE="REF_LYvpjxuaVU (Kidsfilter)" filteraction="REF_nPspwiSzCC (limited access)" size="99" time="421 ms" request="0xb2518910"....... 
2009:08:16-12:53:10 mail httpproxy[1771]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="192.168.1.67" user="" statuscode="200" cached="0" profile="REF_LYvpjxuaVU (Kidsfilter)" filteraction="REF_nPspwiSzCC (limited access)"  size="663" time="399 ms" request="0xb253a768" url="messenger.msn.com/.../tabxml.asp
2009:08:16-12:57:31 mail httpproxy[1771]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="POST" srcip="192.168.1.67" user="" statuscode="200" cached="0" profile="REF_LYvpjxuaVU (Kidsfilter)" filteraction="REF_nPspwiSzCC (limited access)"  size="0" time="20327 ms" request="0xb2518910" url="207.46.107.101/.../gateway.dll

Children

No Data