This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Block API address and POST operation

Hey,

I was wondering if the Sophos firewall had the ability to block an API address as well as a specific command. We would like to block the POST command for an API address, but leave the rest open to maintain functionality.

Thanks,
Z

This thread was automatically locked due to age.

0 Scott_Klassen over 11 years ago

What do you mean by API address? For a web app, this would be a URL. The web filtering component can block by URL strings and regex. If you can create a proper regex to match what you are trying to block, it can do so.
Cancel
Vote Up 0 Vote Down

Cancel
0 zusr over 11 years ago in reply to Scott_Klassen

Yeah it's a URL. I'm specifically trying to block https://mix.office.com/api/mylessons for Post on 443. This will prevent Power Point 2013's Office Mix plugin from uploading to Microsoft's cloud since the presentations could contain confidential material.

Could you give me an example of a regex that would do this?

Thanks a bunch
Cancel
Vote Up 0 Vote Down

Cancel
0 BAlfson over 11 years ago

Hi, zusr, and welcome to the User BB!

So, you're trying to do some sort of Data Loss Protection? The UTM can do some of that with email attachments, but not in Web Filtering. Maybe, if you can identify either the acceptable or unacceptable "Application," you can address your worries with Application Control.

I'd suggest that you pose this question to your reseller for relay to Sophos Support. I'm sure there are many here that would like to know the trick.

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel