cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted
Reliable Contributor haaris
Reliable Contributor
Report Inappropriate Content
Message 1 of 13

Public IP not getting blocked

When trying to access www.hdfcbank.com through public IP it's not  getting blocked.it should be blocked as its not allowed but instead if showing block page it's showing different page.

hdfcbank.jpg

12 Replies
asabban2
Level 17
Report Inappropriate Content
Message 2 of 13

Re: Public IP not getting blocked

Hello,

on the public IP address behind www.hdfcbank.com there are multiple web sites, not only www.hdfcbank.com. To identify which web site should be presented the name is used, as there is no name present (because the IP address was typed in) the web server displays a default error message (the error message shows is not generated by MWG).

Since the public IP is not exclusively used by www.hdfcbank.com it has a different category, and therefore is not blocked by MWG.

Best,

Andre

Reliable Contributor haaris
Reliable Contributor
Report Inappropriate Content
Message 3 of 13

Re: Public IP not getting blocked

Bt my query is whether it's ip or URL it should be block by web gateway if it's not allowed..

McAfee Employee jscholte
McAfee Employee
Report Inappropriate Content
Message 4 of 13

Re: Public IP not getting blocked

Hi Haaris,

Why do you expect MWG to block this site? Based on the information you've given here, you have not proven that you've even attempted to block it.

The rule trace should show you why the site is allowed.

Best Regards,

Jon

Reliable Contributor haaris
Reliable Contributor
Report Inappropriate Content
Message 5 of 13

Re: Public IP not getting blocked

Hi.

I am trying to block it via URL.categories with action block at the bottom of the ruleset which is same for all the rules.When I rule trace I see it's going through web cache rule which I don't understand.

jogvan
Level 10
Report Inappropriate Content
Message 6 of 13

Re: Public IP not getting blocked

My MWG with default policies isn't blocking the ip:

Ruletrace.jpg

Reliable Contributor SafeBoot
Reliable Contributor
Report Inappropriate Content
Message 7 of 13

Re: Public IP not getting blocked

The IP address you're trying to block is a Cloudflare load balancer - it's not the correct address for hdfcbank.com.

For example hdfcbank.com is currently at 104.16.52.162

So I imagine the IP is being blocked, but that's not how you're going to be able to block hdfcbank.com - you're going to have to block using the domain name.

Reliable Contributor haaris
Reliable Contributor
Report Inappropriate Content
Message 8 of 13

Re: Public IP not getting blocked

H,

Is it like that any public ip not having URL or say domain name will not be blocked by mwg??

asabban2
Level 17
Report Inappropriate Content
Message 9 of 13

Re: Public IP not getting blocked

Hello,

it depends on your MWG policy whether such requests are blocked or allowed. MWG does not make any difference between public IP or domain name, so both

http://www.mwginternal.com

and

http://78.46.136.174

are handled identical within MWG. IP addresses can be categorized just like URLs.

If I refer to your example "www.hdfcbank.com" is categorized as "Banking/Finance". The public IP from your screenshot "104.16.57.15" is "Uncagetorized". If you have a rule that blocks specific categories these requests won't be blocked because they do not have any category. This has nothing to do with public IP address or URL, but likely with how categories are filtered.

Best,

Andre

Reliable Contributor haaris
Reliable Contributor
Report Inappropriate Content
Message 10 of 13

Re: Public IP not getting blocked

I also have one case where a URL mppanchayatdarpan.gov.in having public ip 164.100.196.156 is allowed to everyone when it's access from its public ip though not allowed

More McAfee Tools to Help You
  • Subscription Service Notification (SNS)
  • How-to: Endpoint Removal Tool
  • Support: Endpoint Security
  • eSupport: Policy Orchestrator
  • Community Help Hub

      New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

    • Find Forum FAQs
    • Learn How to Earn Badges
    • Ask for Help
    Go to Community Help

    Join the Community

      Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

    • Get helpful solutions from McAfee experts.
    • Stay connected to product conversations that matter to you.
    • Participate in product groups led by McAfee employees.
    Join the Community
    Join the Community