I have had problems trying to use the URI file method with URLs. I found an
alternative that works fine on my FW.
Create a URI resource using wildcards, on the Match tab set the following:-
Host: Other: *
Methods: Other: *
Host: *.{hotmail.com,yahoo.com}
Path: *
Query: *
The list of hosts can be full names (e.g.
{www.dodgysite.com,www.yahoo.com,www.nonworksite.com}).
For your two sites you could use *.{hotmail,yahoo}.com
Marcus Janson
> I am trying to block some sites ( hotmail.com, yahoo.com ) so that any of
> my internal users can access them. I have already create an URI resource
> and I am trying to use the file option in the URI match, but it is not
> working, i guess it is the sintax of the file, can anybody please tell me
> which is the correct sintax, or another form in which I can do this ( I
> do not want to buy third party software, what I mean is that maybe I
> could redirect all of the http connections from my firewall to a Linux
> macine and then usign squid drop the "wrong" packets, but how do I
> redirect from Checkpoint to another machines:port.??? )
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
