I did read the ASG7 "HTTP Profiles Guide", but I couldn't think of any way to simplify the setup that I currently have. Does somebody have a hint for me?
I've got an ASG 7.104, running in our headquarter. The http-proxy on that machine serves as the http-filter for the entire company (11 locations, about 600 Users).
I would like to setup one http-profile for the entire company and only allow very few exceptions for some IP-Adresses in our company. In every location, there are only approx. 5 IPs which should get more privileges than the normal users. But the "worst case" is a location with 5 privileged IPs/PCs, of which only 2 are treated the same way. Example:
Location A:
- PC1: Allowed to access eBay.
- PC2: Allowed to access category "Sports"
- PC3: Prevent content filter when accessing the server idiot.somewhere.com
- PC4 and PC5: Allowed to download EXE and other executable files.
All other PCs in the entire company must not be able to access eBay, or the categories Sports/Nudity/etc and must not download executable files. That has been accomplished by defining a default HTTP-Profile.
As there are 10 other locations, there could be about 25 other exceptions needed, like:
- PCx (location B), PCy (location C) and PCz (location D) are allowed to acces ebay.
But at the same time I need to make sure that no PC in the company can access (for example) "[uncut]video.aol.com" or "video.*.* So I defined the following regular expression:
HTTP / Content Filter / Additional URLs/sites to block = //([-\.\w]+\.)?video\.\w+\.\w+
The problem is, that I also need to define this regular expression in EVERY filter-action which is defined under
HTTP Profiles / Filter Actions
So I need to define that regular expression about a dozen times. And each time I add another regular expression, I also have to do that a dozen times. And there's no way to simplify this? Is that correct?
Any help would be very appreciated.
This thread was automatically locked due to age.