57 lines
905 B
Markdown
57 lines
905 B
Markdown
|
# 【E21现场】业主反馈使用Security策略SNI特征无法对ask.com进行阻断
|
|||
|
|
|
|||
|
|
| ID | Creation Date | Assignee | Status |
|
|||
|
|
|----|----------------|----------|--------|
|
|||
|
|
| OMPUB-1110 | 2024-01-12T15:02:18.000+0800 | 刘洋 | 已关闭 |
|
|||
|
|
|
|||
|
|
|
|||
|
|
---
|
|||
|
|
|
|||
|
|
No description
|
|||
|
|
|
|||
|
|
---
|
|||
|
|
|
|||
|
|
**songlongkun** commented on *2024-01-12T16:41:42.915+0800*:
|
|||
|
|
|
|||
|
|
经排查发现:
|
|||
|
|
1、业主未提取全部SNI,未成功阻断,补充SNI后,该网站可以成功阻断。
|
|||
|
|
2、IGW单向流较多,业主将策略的生效范围选择了BOL-IGW,因此无法成功阻断。
|
|||
|
|
3、经和运营商确认,BOL-IGW新增一条链路,该新链路未接入系统。
|
|||
|
|
|
|||
|
|
|
|||
|
|
|
|||
|
|
---
|
|||
|
|
|
|||
|
|
|
|||
|
|
|
|||
|
|
## Attachments
|
|||
|
|
|
|||
|
|
**50253/ask_capture.pcapng**
|
|||
|
|
|
|||
|
|
---
|
|||
|
|
|
|||
|
|
**50254/ask_capture.PNG**
|
|||
|
|
|
|||
|
|
---
|
|||
|
|
|
|||
|
|
**50325/ask_Security+Events02.jpg**
|
|||
|
|
|
|||
|
|
---
|
|||
|
|
|
|||
|
|
**50255/policy.PNG**
|
|||
|
|
|
|||
|
|
---
|
|||
|
|
|
|||
|
|
**50269/securityEvents+(1).xlsx**
|
|||
|
|
|
|||
|
|
---
|
|||
|
|
|
|||
|
|
**50256/tr_pt.PNG**
|
|||
|
|
|
|||
|
|
---
|
|||
|
|
|
|||
|
|
**50257/TSG_blck_test_report.docx**
|
|||
|
|
|
|||
|
|
---
|
|||
|
|
|