Allow downloads but not uploads from Online Storage (Google Drive)

Question

We currently use a BIG-IP 7250 as a forward web proxy.  I've had a request from high up the management chain to allow downloads a specific 3rd Parties Google Drive space, but not allow uploads.  We block the "Personal Network Storage and Backup" URL Category in our standard policy.&nbsp;
Is there a feature on the device which would allow this fine grained level of control out of the box, or would we be looking at putting in a custom iRule for this?  Traffic intelligence looked promising, but I couldn't find exactly what I was looking for.&nbsp;
Many thanks&nbsp;

philip_jonsson · Answer

That is a very common scenario and I took a look at the SWG. Turns out that Traffic Intelligence is extremely limited. In the Traffic Intelligence policy you can only drop, reject or log the request.&nbsp;
Are you using an explicit or transparent proxy mode?&nbsp;
As far as I can see, you're stuck with building an iRule for it. But this also means you are forced to intercept and de-crypt the SSL session in order to see the payload and request to google. When you know how the upload works you will be able to match against it in the iRule and drop the requests.&nbsp;

Forum Discussion

Allow downloads but not uploads from Online Storage (Google Drive)

Recent Discussions

Background Tasks

Which process is consuming higher CPU

SSL bridging without SSL proxy forward

Big-IP VE edition for MacBook M4 Chip

Client SSL Profile set to Require Client Certificate breaks RDP in APM

Related Content

Automate NetApp ONTAP Storage Management with Private and Secure API Governance

File Uploads and ASM

File upload and ASM

Downloading VE for VmWare

F5 Automation Toolchain Upload

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS