How to use PacketShaper to block HTTPS Facebook traffic
To block all access to Facebook, you would need to manually create a dedicated Facebook class with the following SSL Common Name matching rule criteria: *.facebook.com , *.channel.facebook.com, a248.e.akamai.net. Then apply a Discard policy on this traffic class.
Note: If we don't disable the web app classification for Facebook with the command
class web-app disable facebook, the Facebook traffic might hit the native Facebook class, causing the manualy created class to not be able to classify and block Facebook traffic.
Imported Document ID: 000008153
Subscribing will provide email updates when this Article is updated. Login is required.