1. Preface
Today, with the rapid rise in the popularity of mobile devices, many employees use personal, non-corporate mobile devices (such as iPads, iPhones, etc.). This presents significant challenges to corporate network security, as employees may connect their mobile devices to the corporate wireless network at will. Preventing employees from using the corporate network for personal internet access via their mobile devices is a crucial task. How can this be effectively managed? The following example will illustrate the importance of mobile device security.
2. Network deployment
 We need tow network devices, a switch with mirror port and a wireless router and application can send data via mirror port of switch, see the following figure:
Step1: To connect a PC to wireless router and change LAN port IP address of the wireless router, it will avoid conflicts with other devices within the network.
Step2: Disenable DHCP function of the wireless router.
Step3: Connect the wireless router to switch via LAN port of the wireless router.
Step4: Set mobile devices and connect them to wireless router.
      Step5: Connect the monitor PC with Sax2 to mirror port of the switch.
3. Build a policy for Sax2 to prevent mobile devices access to app store
Step1: Launch Sax2 and open the "security policy" window, then derive a new policy set from the "default" policy set, see the following figure:
Step2: Select the new policy set and click the "edit" button on left to open setting window, see the following figure:
Step3: Switch to âCustomâ page and select the âHTTPâ item in right pane, click the âNewâ button to create a new policy, then enter the name of policy, select âBlocking and Logâ response scheme, enter domains to be prohibited access, for example: www.ids-sax2.com, to here, the settings has been finished, see the following figure:
 Step4: Save settings of policy and apply the new policy set, now we can prevent mobile devices to connect internet