How To - Block ORKUT

Applicable to Version: 9.4.0 build 2

Problem
Block the Social Networking Service “ORKUT”

Orkut is an online community that connects people through a network of trusted friends and
expand circumference of social circle to make your social life, and that of your friends, more active
and stimulating.

Solution

Step 1

Cyberoam has categorized ORKUT under ‘DatingAndMatrimonials’ Default Web Category. To

block the access to ORKUT, deny access to this category using Internet Access policy.

Prerequisite: Web and Application Filter module subscribed

1.1 Create Internet Access policy from Policies > Internet Access Policy > Create Policy with the
following parameters:

Parameters Value
Name Block_ORKUT
Using Template Blank
Web Category DatingAndMatrimonials
Strategy Deny
During Schedule All the time

1.2 Create Firewall rule from Firewall > Create Rule

Parameters Value
Source Zone - LAN
Host - Any Host
Destination Zone - WAN
Host – Any Host
Services/Service Group All Services
Apply Schedule All the Time
Action Drop
Internet Access Policy Block_ORKUT (created in step 1.1)
Step 2

Prerequisite: Intrusion Detection and Prevention (IDP) module subscribed

2.1 Create custom signature from IDP > Custom Signature > Create with the following parameters:

Parameters Value
Custom Signature Name ORKUT
Protocol TCP
Custom Rule srcport:443;content:”www.orkut.com”;
Severity Major
Default Mode Drop

2.2 Create IDP policy from IDP > Policy > Create with the name Block_ORKUT

2.3 Create Firewall rule from Firewall > Create Rule with the following parameters:

Parameters Value
Source Zone - LAN
Host - Any Host
Destination Zone - WAN
Host – Any Host
Services/Service Group All Services
Apply Schedule All the Time
Action Drop
IDP Policy Block_ORKUT (created in step 2.2)

For better security one needs to block ORKUT through custom IDP signature also as ORKUT uses
https login.

Document Version: 9402-1.0-15/11/2006