Re: Block access to Google Games

spauldingd · ‎03-21-2025

We recently implemented a pair of FW1120's with full FTD licensing. Configuring access control policies to block specific websites and URL categories.

One of the categories we have blocked is "games" which does a great job of blocking those websites. However, my users have discovered that by going to Google, searching for "solitaire" it brings up a listing of URL's that host solitaire. Clicking those links results in a firewall block. However, Google also hosts their own versions of solitaire and other games. Which can be played directly from the main search page without triggering the block.

I don't want to do a complete block on Google, but cannot find the right filter to put in place and block those games.

Any suggestions would be appreciated.

spauldingd · ‎05-14-2025

I've blocked everything Google except for search in the Apps section of the config. I'm still working on SSL Decryption

The provided link does not work. Can you confirm? (I did check and it's not being blocked by my rules.)

amojarra · ‎05-19-2025

Hello @spauldingd

Google games uses the same URL as the www.google.com

for example the PACMAN is : https://www.google.com/logos/2010/pacman10-hp.html

in case you are using explicit deployment, you can create a URL category to block the "pacman" in the regex section

or to avoid high load on the WSA, you can add the full URL in the regEx section:

for more information to configure the RegEx I can share this link:

https://www.cisco.com/c/en/us/support/docs/security/secure-web-appliance-virtual/220557-configure-custom-url-categories-in-secur.html

in this case , you need yo add all the Google online Games URLs one by one

And if you are using Transparent deployment, you need to decrypt all Google.com traffic ( which will puts some extra load on your WSA ) and then block the games, from the AccessPolicy for the CustomURL category that you created for those games

Regards,

Amirhossein Mojarrad

+++++++++++++++++++++++++++++++++++++++++++++++++++

++++ If you find this answer helpful, please rate it as such ++++

+++++++++++++++++++++++++++++++++++++++++++++++++++

Regards,
Amirhossein Mojarrad
+++++++++++++++++++++++++++++++++++++++++++++++++++
++++ If you find this answer helpful, please rate it as such ++++
+++++++++++++++++++++++++++++++++++++++++++++++++++

spauldingd · ‎06-10-2025

I find it fascinating that in a topic specifically talking about blocking all games you post a link recommending a game to my users.

Kind of missing the point of blocking games.

MHM Cisco World · ‎07-02-2025

Can you confirm if issue solve or not

Thanks

MHM

wajidhassan · ‎07-07-2025

To block Google games without blocking all of Google, enable SSL decryption and create custom URL filters with regex for paths like /logos/.* or keywords like "solitaire" and "pacman."

jerry7494 · ‎11-12-2025

Yeah, this one’s a tricky situation because Google hosts those mini-games directly under their main domain, which means traditional URL category filters don’t catch them. Since the games run from google.com itself, the firewall sees it as normal Google traffic, not a separate “games” site.

One option is to create a custom URL or application rule that specifically targets those paths used by the games. For example, you can block requests containing /games, /play, or specific query parameters like q=solitaire or q=tic+tac+toe. It’s not perfect, but it helps limit direct access while keeping normal Google search functionality.

You could also consider using DNS inspection or SSL decryption with URL filtering enabled, so the firewall can actually read and act on the specific page requests within Google. That way, you can fine-tune access without blocking all of Google. Null's Brawl APK