Problem
Block the Social Networking Service “ORKUT”
Orkut is an online community that connects people through a network of trusted friends and
expand circumference of social circle to make your social life, and that of your friends, more active
and stimulating.
Solution
Step 1
1.1 Create Internet Access policy from Policies > Internet Access Policy > Create Policy with the
following parameters:
Parameters Value
Name Block_ORKUT
Using Template Blank
Web Category DatingAndMatrimonials
Strategy Deny
During Schedule All the time
Parameters Value
Source Zone - LAN
Host - Any Host
Destination Zone - WAN
Host – Any Host
Services/Service Group All Services
Apply Schedule All the Time
Action Drop
Internet Access Policy Block_ORKUT (created in step 1.1)
Step 2
2.1 Create custom signature from IDP > Custom Signature > Create with the following parameters:
Parameters Value
Custom Signature Name ORKUT
Protocol TCP
Custom Rule srcport:443;content:”www.orkut.com”;
Severity Major
Default Mode Drop
2.2 Create IDP policy from IDP > Policy > Create with the name Block_ORKUT
2.3 Create Firewall rule from Firewall > Create Rule with the following parameters:
Parameters Value
Source Zone - LAN
Host - Any Host
Destination Zone - WAN
Host – Any Host
Services/Service Group All Services
Apply Schedule All the Time
Action Drop
IDP Policy Block_ORKUT (created in step 2.2)
For better security one needs to block ORKUT through custom IDP signature also as ORKUT uses
https login.