https://community.cisco.com/t5/network-security/blocking-facebook-chat-with-asa-5520/m-p/1253923#M834158 <HTML><HEAD></HEAD><BODY><P>try it with regular expressions</P></BODY></HTML> Tue, 15 Dec 2009 14:18:08 GMT sergiu.campian 2009-12-15T14:18:08Z https://community.cisco.com/t5/network-security/blocking-facebook-chat-with-asa-5520/m-p/1253918#M834153 <P>We have a 5520, with the CSC, though without the Plus license.</P><P></P><P>We would like to block Facebook chat, without blocking the rest of Facebook.</P><P></P><P>A bunch of searching has turned up the following 3 URLs to block, so I put them into the CSC under URL Blocking.</P><P></P><P><A class="jive-link-custom" href="http://www.facebook.com/ajax/chat/" target="_blank">http://www.facebook.com/ajax/chat/</A>*</P><P><A class="jive-link-custom" href="http://www.facebook.com/ajax/presence/" target="_blank">http://www.facebook.com/ajax/presence/</A>*</P><P><A class="jive-link-custom" href="http://www.facebook.com/intent.php" target="_blank">http://www.facebook.com/intent.php</A></P><P></P><P></P><P>This is supposed to prevent outgoing messages, prevent a user from seeing other facebook users, and prevent incoming messages.</P><P></P><P>However, it doesn't do anything. As well, the places where I've seen this referenced have a following message to the effect that "this no longer works."</P><P></P><P>Facebook's support hasn't answered any requests for information on how to block chat at the firewall, just telling us how to block chat as individuals, which doesn't help.</P><P></P><P>Does anyone have any ideas? Anyone else done this?</P><P></P><P>Thanks,</P><P>Rich</P><P></P> Mon, 11 Mar 2019 15:49:06 GMT https://community.cisco.com/t5/network-security/blocking-facebook-chat-with-asa-5520/m-p/1253918#M834153 RICH FRUEH 2019-03-11T15:49:06Z https://community.cisco.com/t5/network-security/blocking-facebook-chat-with-asa-5520/m-p/1253919#M834154 <HTML><HEAD></HEAD><BODY><P>URL blocking should work. But, you most certainly need plus license for this to work. </P><P></P><P>Pls. refer this link has a nice table:</P><P><A class="jive-link-custom" href="http://www.cisco.com/en/US/docs/security/csc/csc62/administration/guide/csc1.html#wp1053366" target="_blank">http://www.cisco.com/en/US/docs/security/csc/csc62/administration/guide/csc1.html#wp1053366</A></P></BODY></HTML> Mon, 29 Jun 2009 22:00:25 GMT https://community.cisco.com/t5/network-security/blocking-facebook-chat-with-asa-5520/m-p/1253919#M834154 Kureli Sankar 2009-06-29T22:00:25Z https://community.cisco.com/t5/network-security/blocking-facebook-chat-with-asa-5520/m-p/1253920#M834155 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P><SPAN>Im very despondent with TrencMicroCSC with new update and old update. Becasue CSC URL Filtering not working correclty. For Example Block list not working True. if the user type on the browsers address tab </SPAN><A class="jive-link-external-small" href="https://www.facebook.com">https://www.facebook.com</A><SPAN> site opened </SPAN><SPAN __jive_emoticon_name="sad" __jive_macro_name="emoticon" class="jive_macro jive_emote" src="https://community.cisco.com/images/emoticons/sad.gif"></SPAN><SPAN> if users are type </SPAN><A class="jive-link-external-small" href="https://www.sssssss">https://www.sssssss</A><SPAN> sites were opened.</SPAN></P><P></P><P>i have got a plus lisence. anybody does not help Asa or CSC Security . approximatly we spend 15.000$ but CSC very bad card or very bad <SPAN class="short_text" id="result_box"><SPAN style="background-color: #ffffff;" title="senkronizasyon">synchronization with ASA. I'm very aggrieved this situation. I'm system administrator at the government hospital in Turkey. </SPAN></SPAN></P><P></P><P>If these errors not get better i buy Fortigate Series Content Security.</P><P></P><P>I m not helping with Cisco or CSC card.</P><P></P><P></P><P>Please S.O.S. with ASA and bad CSC Card <SPAN __jive_emoticon_name="angry" __jive_macro_name="emoticon" class="jive_macro jive_emote" src="https://community.cisco.com/images/emoticons/angry.gif"></SPAN></P><P></P><P></P><P></P><P></P><P></P><P>System Administrator</P></BODY></HTML> Mon, 14 Dec 2009 13:56:30 GMT https://community.cisco.com/t5/network-security/blocking-facebook-chat-with-asa-5520/m-p/1253920#M834155 tekinerdem 2009-12-14T13:56:30Z https://community.cisco.com/t5/network-security/blocking-facebook-chat-with-asa-5520/m-p/1253921#M834156 <HTML><HEAD></HEAD><BODY><P><SPAN>You are talking about </SPAN><A class="jive-link-external-small" href="https://">https://</A></P><P>The CSC module presently can only scan 4 protocols. HTTP, SMTP, POP and FTP. These are tcp ports 80,25,110 and 21.</P><P></P><P>https is tcp port 443 that the CSC module cannot scan.</P><P></P><P>-KS</P></BODY></HTML> Mon, 14 Dec 2009 14:09:48 GMT https://community.cisco.com/t5/network-security/blocking-facebook-chat-with-asa-5520/m-p/1253921#M834156 Kureli Sankar 2009-12-14T14:09:48Z https://community.cisco.com/t5/network-security/blocking-facebook-chat-with-asa-5520/m-p/1253922#M834157 <HTML><HEAD></HEAD><BODY><P>How can i blocking https or facebook and facebook subdomains with 5520 rules or CSC Module??</P></BODY></HTML> Tue, 15 Dec 2009 08:00:57 GMT https://community.cisco.com/t5/network-security/blocking-facebook-chat-with-asa-5520/m-p/1253922#M834157 gultekinerdem 2009-12-15T08:00:57Z https://community.cisco.com/t5/network-security/blocking-facebook-chat-with-asa-5520/m-p/1253923#M834158 <HTML><HEAD></HEAD><BODY><P>try it with regular expressions</P></BODY></HTML> Tue, 15 Dec 2009 14:18:08 GMT https://community.cisco.com/t5/network-security/blocking-facebook-chat-with-asa-5520/m-p/1253923#M834158 sergiu.campian 2009-12-15T14:18:08Z https://community.cisco.com/t5/network-security/blocking-facebook-chat-with-asa-5520/m-p/1253924#M834159 <HTML><HEAD></HEAD><BODY><P>Bear in mind regex requires http inspection and the CSC is already scanning that. This may add to the latency</P><P>.</P><P></P><P>-KS</P></BODY></HTML> Tue, 15 Dec 2009 14:21:17 GMT https://community.cisco.com/t5/network-security/blocking-facebook-chat-with-asa-5520/m-p/1253924#M834159 Kureli Sankar 2009-12-15T14:21:17Z