Blocking music and streaming video with Check Point firewall

How can I block streaming video and music with a Check Point firewall?

Step 2 of 2:

You forgot to provide an Email Address.

This email address doesn’t appear to be valid.

This email address is already registered. Please login.

You have exceeded the maximum character limit.

Please provide a Corporate E-mail Address.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

First: RealAudio has the ability to tunnel streaming audio/video through http. Use the HTTP Security Server to deal with this in the current version. If you have CVP, you may be able to use the CVP server to screen out those MIME types. If you are not using a CVP server, you can do this with a wildcard URI. The URI Definition window would have the following in the "Match" tab:
Schemes: HTTP
Methods: GET
Host: *
Path: {*/*.{ra,rm,ram},*.{ra,rm,ram}}
Query: *

Note: You can stop HTTP downloads by adding {*/*.{exe,zip,bin},*.{exe,zip,bin}} to the path statement.

You would then create a rule that uses this resource and denies access to anything matching this resource.

Second: Proxy by secure authentication, then content check.

Third: Block the ports or known IPs, such as those for Napster, if you know them. You can gain IP information through the use of logs.

I think this will solve or at least direct you.

Dig Deeper on Network device security: Appliances, firewalls and switches

SearchCloudSecurity

More on this topic

Get started with API versioning and URIs

How to upload and download files with PowerShell FTP script

HTTP/2 protocol

How does a WebKit framework flaw enable denial-of-service attacks?

Please create a username to comment.

How enterprise cloud VPN protects complex IT environments

CASB, CSPM, CWPP emerge as future of cloud security

Prevent cloud account hijacking with 3 key strategies

Juniper's 128 acquisition needed to improve SD-WAN

The basics of zero-trust network access explained

Enterprise 5G: Guide to planning, architecture and benefits

Is your company's IT governance strategy cloud ready?

Government action on big tech monopoly power moving quickly

Quantum computing challenges and opportunities

A complete guide to troubleshooting Windows Hello

Comparing Jamf vs. Fleetsmith for macOS management

Mac users key in defending against Apple T2 chip flaw

Compare Google Cloud Deployment Manager vs. Terraform on GCP

Explore the tools for disaster recovery on AWS, Azure and GCP

Cloud performance testing is necessary for app migration

Project Endeavour gets in gear to begin first public autonomous vehicle trials

Saudi Arabian authorities work with Chinese IT giants on digital goals

SonicWall patches 11 firewall vulnerabilities

More on this topic

Dig Deeper on Network device security: Appliances, firewalls and switches

Get started with API versioning and URIs

How to upload and download files with PowerShell FTP script

HTTP/2 protocol

How does a WebKit framework flaw enable denial-of-service attacks?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.