Endpoint Security v7 is unable to block youtube video streaming in Chrome

[martmont 0]

Hello, We bought some Endpoint Security License 2 months ago and we are trying to block Youtube videos in PCs. Using the Control Web we applied Block Rules to youtube URL and domain: www.youtube.com / youtube.com and also the google video services domain, and it works fine in Firefox, Opera, Edge and IE, but in Chrome this fail if you have your google account open or if you have the youtube site in Favs. doesnt matter if you delete cookies or cache the site still bypassing the Control Web block rule.

We can't block via IP beacause  you know, youtube use several IP addressess.

Someone knows how to block it succesfull ? thanks for your help.

[Marcos 5,074]

Does disabling QUIC protocol in Chrome make a difference? https://support.eset.com/kb6757

[itman 1,659]

9 hours ago, Marcos said:

Does disabling QUIC protocol in Chrome make a difference? https://support.eset.com/kb6757

If this doesn't work, you can block uTube with a Chrome extension: https://www.techwalla.com/articles/how-to-block-youtube-on-chrome

-EDIT- Assuming you're not using Google Chrome Enterprise to manage the Chrome clients, you can also checkout using GPO to do so: https://ittutorials.net/microsoft/windows-server-2016/gpo-google-chrome/

Edited June 8, 2019 by itman

[martmont 0]

Hi, I disabled QUIC in Chrome but doesn't work. It is not the Chrome Enterprise and we don't have AD. The issue is that we need to do that just with Eset Endpoint, not using third part software.

At this time we can't block the access to the web site but can block the streaming video load, we add the domains googlevideo.com and youtu.be 

[Marcos 5,074]

One more thing, couldn't it be that you have communication with trusted domains excluded? The setting is enabled by default:

[itman 1,659]

 

Quote

Method 3: Block websites on the router

You can block websites on Chrome browser by reconfiguring your router settings. This will affect all the computers on your network. Please back up your router’s original settings before going forward with this method.

1) Connect to your router by typing the default address on your browser window. The default address is different for different routers but is usually 192.168.1.1 or 192.168.01. If you are not sure of the default address, check with your service provider.

2) Depending on which router you use, look for URL filter, or Parental Controls, or Firewall in the settings under the Security, Parental Control or Firewall tab.

3) The URL filter lets you add the URLs for every website you want to block. The Parental Controls section lets you block websites on Chrome and specify the time when the Internet can be accessed. The Firewall settings also let you block websites by entering the URL. Most routers will have one of these features in the Settings.

4) Follow the instructions and reboot the router for the changes to take effect.

 

Or, block uTube within Chrome:

Quote

Method 4: Add to restricted sites on Chrome

This is a very easy method of blocking any website on Chrome. You don’t need software or extensions for this method. The downside is that it is not password protected and anybody can change the settings to reverse it.

Here is the step-by-step process:

I. Go to Google Chrome settings menu and scroll down to advanced settings

II. Under System, click on Open Proxy Settings

III. Open the Security tab and select Restricted Sites. Click on Sites

IV. In the dialog box that opens, type in the URLs of all the sites you want to block and Click on Add.

V. To remove, simply select the URL and click on Remove.

 

https://www.technorms.com/65050/best-ways-to-block-websites-on-chrome

-EDIT-

You can also try to block uTube using a host file entry: https://www.wikihow.com/Block-YouTube . Note this comment:

Quote

If you use Chrome, you'll need to place a space after YouTube's address and then type in www.youtube.com there.

 

Quote

Inserting a redirect into the hosts file is simple. Just enter the IP address of the desired server or host, leave a single space, and then enter the domain or hostname you want to point to that IP. Enter only one redirect per line.

When redirecting a real website URL, you should include one redirect with the www and another without, to ensure both will be redirected to your desired IP.

When redirecting a custom hostname (rather than a real website), it’s a good idea to add an extension (such as .com) even though not required. This is because some web browsers will think you’re trying to perform a search if a domain extension isn’t included and will return search results instead of taking you to the IP you’ve designated.

http://techgenix.com/tips-and-tricks-using-windows-hosts-file/

 

Edited June 10, 2019 by itman

[bbahes 29]

On 6/8/2019 at 8:15 AM, Marcos said:

Does disabling QUIC protocol in Chrome make a difference? https://support.eset.com/kb6757

Will new application filtering feature announced for future 7.x version of endpoint clients be able to control these situations?
We have situations where clients roam outside corporate network and we would want to be able to control things on application level.

Thanks!

[Marcos 5,074]

8 minutes ago, bbahes said:

Will new application filtering feature announced for future 7.x version of endpoint clients

I don't think so. If there's application control added one day, I think you will be able to block execution of particular applications or prevent them from accessing the Internet regardless of the location of the application. However, it's too early to talk about application control at this point.