SonicWall: How to configure exclusion github subdomain on SonicWall firewall

Overview

The article explains how to configure the github subdomain exclusion on the SonicWall firewall device. To enhance security and increase data loss resistance for businesses. The business wants to block access to github but still allow users to access its github

The article was made on a SonicWall NSv 270 device with SonicOSX version 7.0.1

How to configure

  • Login to SonicWall firewall by Admin account
  • Configure SSL/TLS Inspection on SonicWall firewall, if you do not know how to configure, please refer to this article
  • Create web filtering policy to block github website -> Go to OBJECT -> Choose Match Objects -> Choose URl Lists -> Click Add
  • Enter name for URl List
  • In Type: Choose Domain
  • Click Add và add github.com
  • Click Save
  • Create firewall rule to block github.com website -> Go to POLICY -> Choose Rules and Policies -> Choose Security Policy -> Click Add
  • In Source/Destination: Choose LAN in SOURCE and WAN in DESTINATION
  • In App/URL/Custom Match: Choose URL List that was created before
  • Click Add
  • Check the access to github
  • Create exclusion github.com/companyA -> Go to OBJECT -> Choose Match Objects -> Choose URl Lists -> Click Add
  • Enter name for URl List
  • In Type: Choose URl
  • Click Add and enter subdomain
  • Click Save
  • Go to POLICY -> Choose Rules and Policies -> Choose Security Policy -> Click Add
  • In Source/Destination: Choose LAN in SOURCE and WAN in DESTINATION
  • In App/URL/Custom Match: Choose URL that was created before
  • Click Save
  • Check access to domain and subdomain

Be the first to comment

Leave a Reply

Your email address will not be published.


*


This site uses Akismet to reduce spam. Learn how your comment data is processed.