To restrict the user from downloading and uploading documents in Google Drive, you can create a category and add it to a policy in the Smoothwall Filter and Firewall. However, this only works for the web version of Google Drive not the desktop application.
Procedure
Note: When blocking file downloads, a file may still be visibly downloaded, but the file is the Smoothwall blockpage rather than the file the user is trying to access.
- Create a new custom category:
- On the GUARDIAN menu, under Policy objects submenu, click Categories.
- Under the Manage categories section, type a Name for the category, for example, Google Drive Upload and Download.
- In the Domain/URL filtering box, enter:
- To block downloads:
- mail-attachment.googleusercontent.com/attachment
- drive.google.com/drive/shared-with-me
- To block uploads:
-
- clients6.google.com/upload/drive
-
- To block downloads:
- In the URL Patterns box, enter:
-
- ((?:drive|docs)\.google\.com\/.*export)
-
- Click Save.
- Add the custom category to the Decrypt and inspect policy:
- On the GUARDIAN menu, under HTTPS inspection submenu, click Manage policies.
- Either edit an existing policy or create a new one:
- Who Everyone*
- What Choose the custom category created in step 1
- Where Everywhere*
- When Always*
- Action Block
*You should change these based on your organizational needs.
- Make sure the Enable Policy option is selected and click Confirm and then Save.