Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Silver
New Contributor

Regular express

Dear All,

I would like to allow website facebook.com, But i only need to block the profile link using regular expression.

Like the link www.facebook.com/profile.php?id=100010106623165. so anyone who's click or search someone using name or email address but while click on the user profile this should be block. Only the ID will be different for everyone.

 

Anyone can help how to do it using regular expression.

 

Thanks

2 REPLIES 2
emnoc
Esteemed Contributor III

I guess the 1st question do you  have SSL de-encryption enable on the fw-policies that are  allowing traffic to facebook. To write a URL filter would be the easy part but if the client attaches to facebook using https  this would create more additional concerns.

 

Just keep in mind, you have another option of looking at a IPS filter on http content for the string " www.facebook.com/profile.php?id=" and just blocking that access for anything matching that  url but like above ssl traffic and encryption needs to be removed to match the string

PCNSE 

NSE 

StrongSwan  

PCNSE NSE StrongSwan
Chris_Lin_FTNT

Try this:

www.facebook.com/profile\.php\?id=\d+

Top Kudoed Authors