AppSense Application Manager – Blocking all network traffic for a user

When trying to block all network traffic using AppSense Application Manager (part of the Desktop Now suite) you may find that doing a wildcard * for all ports is not sufficient.

Connection Type Hostname
Host *
Port(s) 1-9999
Path
Text contains wildcard characters Checked
Description Block All Hostname based Network Access

AppSenseAM_BlockAllTraffic_HostnameRuleAppSenseAM_BlockAllTraffic_HostnameRule2_15012015
The reason for this is that when a search engine like Google Search is set as the default Search Engine in a browser like Firefox, any text entered into the Address Bar is posted to an IP Address rather than a Hostname.  As such your Hostname Rule Condition (*:1-9999) is not matched.

Note that not the case for all search engines such as Bing/Yahoo who post to a hostname/URL rather than IP address.

To block this behaviour you will need to add a similar Prohibited Network Connection Item based on IP address.  Configure the Host as *.*.*.* (tick the text contains wildcard option!) and ports as per your Host name rule (1-9999)

Connection Type IP Address
Host *.*.*.*
Port(s) 1-9999
Path
Text contains wildcard characters Checked
Description Block All IP based Network Access

AppSenseAM_BlockAllTraffic_IPRule1_15012015

The final product should look as below:

AppSenseAM_BlockAllTraffic_Final_15012015

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s