EFW Support
Welcome,
Guest
. Please
login
or
register
.
Did you miss your
activation email?
Saturday 02 November 2024, 06:30:20 am
1 Hour
1 Day
1 Week
1 Month
Forever
Login with username, password and session length
The Latest Endian Firewall is now available for download
HERE
14248
Posts in
4376
Topics by
6515
Members
Latest Member:
hulteends
Search:
Advanced search
EFW Support
Support
General Support
Content Filter priority question & problem.
0 Members and 1 Guest are viewing this topic.
« previous
next »
Pages:
[
1
]
Author
Topic: Content Filter priority question & problem. (Read 10334 times)
mxnerd
Full Member
Offline
Posts: 11
Content Filter priority question & problem.
«
on:
Wednesday 19 May 2010, 01:42:23 pm »
I tried to configure Content Filter to filter some websites, allowing only a specific period of time of the day to visit these websites. And I want to block some websites completely, both for some specific machines, ex. 192.168.1.20 & 192.168.1.21
So I created
1. Content Filter 1, let's say blocking facebook.com during 12:00 AM to 8:00 PM, so facebook.com is in the blacklist
2. Content Filter 2, let's say blocking porn.com completely so porn.com is in the blacklist
1. Policy 1 - apply Content Filter 1 for both machines 192.168.1.20 & 192.168.1.21
2. Policy 2 - apply Content Filter 2 for both machines 192.168.1.20 & 192.168.1.21
During 8:00PM - 12:00AM, users are able to access facebook.com, but not porn.com. But after 12:00 AM, users are blocked from visiting facebook.com yet are able to visit porn.com!
If I swapped the Access Policy priority, then users can't visit porn.com yet will be able to visit facebook.com after 12:00AM, so the situation also swapped!
Why is that and how can I fix it?
Logged
mrkroket
Hero Member
Offline
Posts: 495
Re: Content Filter priority question & problem.
«
Reply #1 on:
Thursday 20 May 2010, 03:54:56 am »
Rules are applied in order. If one website comply one rule, and rule is accept, then the website is allowed (there is no further checking).
So you must define the most restrictive rules first, and after that the least restrictive ones.
Make sure your policy #1 are not allowing porn.com.
Another option is create a domain blacklist rule without any Content Filter associated.
Make a rule #1,
Source:
ALL
Destination Type:
Domain
Insert Domains:
.porn.com (it's really important the dot at the start of the domain!!)
Access Policy:
Deny
Make a rule #2,
Source:
ALL
Destination Type:
Domain
Insert Domains:
.facebook.com
Time Restrictions:
From 12AM to 8PM
Access Policy:
Deny
Make a rule #3,
Source:
ALL
Destination Type:
ANY
Filter Profile:
The one you want
Access Policy:
Accept
This way you'll block .porn.com at anytime and .facebook.com at workhours. After that, the Content filter is applied.
You can also remove the rule #1 and add it inside Content filter of rule #3, having only 2 rules.
I like the 3 rules way because is more visual, you easily see the blocked websites, and it's independent to the Content Filter.
Logged
mxnerd
Full Member
Offline
Posts: 11
Re: Content Filter priority question & problem.
«
Reply #2 on:
Thursday 20 May 2010, 11:15:39 am »
Thanks mrkroket !
Your option 2 solution is much easier. It works perfectly now.
Highly appreciated.
Logged
Pages:
[
1
]
« previous
next »
Jump to:
Please select a destination:
-----------------------------
Announcements
-----------------------------
=> Project News
=> Latest News and Updates
-----------------------------
Support
-----------------------------
=> General Support
=> Installation Support
=> EFW SMTP, HTTP, SIP, FTP Proxy Support
=> VPN Support
=> Hardware Support
-----------------------------
Development
-----------------------------
=> EFW Wishlist
=> Contribute Your Customisations & Modifications
Page created in 0.047 seconds with 18 queries.
Powered by SMF 1.1 RC2
|
SMF © 2001-2005, Lewis Media
Design by
7dana.com