The block page needs to be masked or hosted on a different server
- Article Number: 000011358
- Products: Forcepoint URL Filtering, Forcepoint Web Security, TRITON AP-WEB, Web Filter & Security, Web Security Gateway Anywhere, Web Security and Web Filter
- Version: 8.5, 8.4, 8.3, 8.2, 8.1, 8.0, 7.8, 7.7, 7.6, 7.5, 7.1, 7.0
- Last Published Date: July 24, 2020
Problem Description
Users need to be redirected to a block page hosted on a different server. Is it possible to hide the identity of the Websense machine (make it look as though the block page is coming from another machine)? |
Resolution
Options are available to hide the identity of the Forcepoint server. You may:
It is also possible to serve Content Gateway block pages over the P1 interface instead of the C interface on a V10K appliance, however this will require root access. Raise a case with Technical Support and in the case description, ensure this article (11358) is mentioned. Change the message displayed in the top frame of a block page
Modify the hosts file to make the block page appear to be coming from another machine
# Copyright (c) 1993-2016 Microsoft Corp.
# # This is a sample HOSTS file used by Microsoft TCP/IP for Windows. # # This file contains the mappings of IP addresses to host names. Each # entry should be kept on an individual line. The IP address should # be placed in the first column followed by the corresponding host name. # The IP address and the host name should be separated by at least one # space. # # Additionally, comments (such as these) may be inserted on individual # lines or following the machine name denoted by a '#' symbol. # # For example: # # 102.54.94.97 rhino.acme.com # source server # 38.25.63.10 x.acme.com # x client host # localhost name resolution is handled within DNS itself. # 127.0.0.1 localhost # ::1 localhost
<IP-Address> FakeBlockPageHostname
Substitute the entire block page for a page hosted on another serverTo point the block page to another machine, you must edit the eimserver.ini file. When you configure Forcepoint software to use a block page on another machine, the URL redirect no longer includes the name or IP address of the Forcepoint machine. For example, the user's browser normally shows a URL like the following when a block page is displayed: http://<IP-Address>:15871/cgi-bin/blockpage.cgi?ws-session=587202562
This URL identifies the server as being located at a specific IP Address. If you do not want to disclose the location of the host machine, pointing to block pages on another machine is one solution. Important When you point to block pages on another server, you lose the functionality associated with block page buttons (used for the Continue, Use Quota Time, Go Back, Continue, and Password Override options). If you use only the block and permit filtering options in your policies, this doesn't present any problems. To preserve the option to use the More Information link, and the Use Quota Time, Go Back, Continue, and Password Override buttons, use the host name masking options described in the previous section. Note These steps are for a Windows server filtering service deployment. If an Appliance Content Gateway is in use, raise a case with Technical Support for assistance with changes. Before configuring Forcepoint software to point to a block page on another machine, place the default or edited block pages on the new host machine. When the HTML files are in place, edit the eimserver.ini file on the Forcepoint server:
Substitute the correct Web server host name for <www.domain.com>.
Substitute the IP address of the host machine for <IP address>.
Note The protocol portion of the URL (http://) is required.
Keywords: block page; custom block page; host block page; userdefined block page; block messages; modify host |
Article Feedback
Want 24/7 Tech Support?
Learn more