Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
6509
Views
0
Helpful
8
Replies

Block-Gmail Chat ( not Gmail)

prashant dwivedi
Level 1
Level 1

‎04-15-2016 12:26 AM - edited ‎03-12-2019 12:37 AM

Hello Guys,

I want to know how to block Gtalk or gmail inbuilt chatting feature,  I want users should able to access the emails (gmail) and they should not be able to use chat facility. I want to achieve this using Cisco 5515X having FirePower Module.

Thanks,

Prashant

Labels:
0 Helpful
8 Replies 8

nspasov
Cisco Employee
Cisco Employee

‎04-15-2016 11:47 AM

Hello Prashant-

You can do that with FirePOWER. You will need to do two things:

1. Create a rule in your Access Policy (Policy > Access Control Policy) in which you are blocking the application called "Google Hangouts"

2. Create a SSL decryption policy. Google uses HTTPs, thus the session will need to be decrypted before in order for FirePOWER to be able to block the particular application while allowing everything else. 

I hope this helps!

Thank you for rating helpful posts!

0 Helpful

prashant dwivedi
Level 1
Level 1
In response to nspasov

‎04-18-2016 04:43 AM

Guys,

sorry to say nothing worked for me, please find attached screenshot having policy configuration details.

Not sure whats wrong, I have called google hangout and google talk both as advised, I can still make a hangout call with my friends. 

is there anything am missing or any other ways to achieve the same?

Thanks!

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame
In response to prashant dwivedi

‎04-18-2016 05:25 AM

Your screenshot did not come through.

What does the connection record show when your session is not captured by the policy?

0 Helpful

prashant dwivedi
Level 1
Level 1
In response to Marvin Rhoads

‎04-18-2016 07:42 PM

its saying allowed. haven't seen hangout being blocked, to test it further, I did specify 'gmail" as application in my policy and it got blocked.

I am not sure if there is any ways to block the hangout?

Thanks

0 Helpful

Andre Neethling
Level 4
Level 4
In response to prashant dwivedi

‎04-18-2016 11:56 PM

Hi. I think Hangouts and GoogleTalk are different applications. Is it the "Chat enabled Gmail" window within the Gmail web page you want to block? If so,  that connection is to a specific URL. So you can either block the URL (I can't remember what it is), or if there is a category "Chat" in URL filtering, you can try that too. But that will block all chat applications/URLs.

0 Helpful

prashant dwivedi
Level 1
Level 1
In response to Andre Neethling

‎04-19-2016 09:26 PM

it didn't help! sorry.

any other advise please?

0 Helpful

nspasov
Cisco Employee
Cisco Employee
In response to prashant dwivedi

‎04-19-2016 09:15 AM

Hi Prashant, did you configure a SSL Decryption policy? If you want to block just www.google.com or www.gmail.com then you don't need to decrypt the connection. However, if you want to block an application within that browser session (like hangouts) then you will need to decrypt the session. Otherwise, Sourcefire will never see that application being used. 

Thank you for rating helpful posts!

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame

‎04-15-2016 01:04 PM

Hi Prashant,

I believe the app you are talking about is known a Google Talk in the FirePOWER application listing. See screen shot below.

You can call it out specifically in your rules that you build into your access control policy and make the action for it be "block".

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card