Complete rules of the Application Control rule set

When working with the complete rules of the Application Control rule set, all rules and rule elements of this rule set can be viewed and configured.

Library rule set – Application Control
Criteria – Always
Cycles – Requests (and IM), Responses

The following rule sets are nested in this rule set:

  • Block Applications in Request Cycle

  • Block Applications in Response Cycle

Block Applications in Request Cycle

This nested rule set handles application filtering in the request cycle.

Nested library rule set – Block Applications in Request Cycle
Criteria – Always
Cycle – Requests (and IM)

The rule set contains the following rules:

Block instant messaging applications
Application.Name is in list Instant Messaging –> Block<Default>
The rule uses the Application.Name property to check whether the name of an application is contained in a specified list. If it is, it blocks a request for this application.
The action settings specify a message to the requesting user.

The rule is not enabled by default.

Block web applications with high risk
Application.HighRisk equals true AND Application.Name is in list Web Browsing and Web Conferencing –> Block<Default>
The rule uses the Application.HighRisk property to check the reputation score of an application and the Application.Name property to check whether the name of this application is contained in a specified list. If the reputation score reaches or exceeds the high-risk level and the application name is also on the list, it blocks a request for this application.
The action settings specify a message to the requesting user.
Block Facebook chat
Application.ToString (Application .Name) equals "Facebook.Chat" –> Block<Default>
The rule uses the Application.To String property to check whether the name of an application is equal to a specified string. For this purpose, the name of the application is converted into a string. If the converted application name equals the specified string, a request for the application is blocked.
The action settings specify a message to the requesting user.

The rule is not enabled by default.

Block Applications in Response Cycle

This nested rule set handles application filtering in the response cycle.

Nested library rule set – Block Applications in Response Cycle
Criteria – Always
Cycle – Responses

The rule set contains the following rule:

Applications to be looked for in response cycle
Application.Name is in list of Applications to Search for in Response Cycle –> Block<Default>
The rule uses the Application.Name property to check whether the name of an application is contained in a specified list. If it is, it blocks a request for this application.
The action settings specify a message to the requesting user.

The rule is not enabled by default.

Block web applications with high risk
Application.HighRisk equals true AND Application.Name is in list Web Browsing and Web Conferencing –> Block<Default>
The rule uses the Application.HighRisk property to check the reputation score of an application and the Application.Name property to check whether the name of this application is contained in a specified list. If the reputation score reaches or exceeds the high-risk level and the application name is also on the list, it blocks a request for this application.
The action settings specify a message to the requesting user.
Block Facebook chat
Application.ToString (Application .Name) equals "Facebook.Chat" –> Block<Default>
The rule uses the Application.To String property to check whether the name of an application is equal to a specified string. For this purpose, the name of the application is converted into a string. If the converted application name equals the specified string, a request for the application is blocked.
The action settings specify a message to the requesting user.

The rule is not enabled by default.