How can I block ALL of github?
I need to block all of github from a network that uses TZ 370.
I see here: https://api.github.com/meta that Gitub uses hundreds of CIDR networks. How can I block ALL of Github without having to manually enter all of these network addresses?
Thanks for your input. I appreciate it.
Best Answer
-
Arkwright Community Legend ✭✭✭✭✭
Use FQDN objects instead, I assume they have far fewer domains than they have CIDRs. The main caveat with FQDN objects to work "perfectly" is that the firewall and the clients need to be using the same DNS; the firewall snoops on the DNS requests from the clients and caches the answers. If they don't use the same DNS then it is slightly less reliable but worth trying anyway.
You could use the CLI to bulk import objects, but you would have to keep it up to date. Or "Dynamic external address groups" but then you still need to convert that list into the correct format for the Sonicwall.
2
Answers
Thank you. All are on the same DNS. I'll set up the FQDN objects and see if that stops all github traffic.