URL Filter

Overview

URL filter section can be used to block access to URLs based on their host name and / or file path. If the URL is denied, an error page template is sent to the web browser.

URL filter can not only be used to block access to specific websites, but it can also be used to very effectively and granularly block specific objects like banners and advertisement, search engine queries, URLs containing specific words like 'sex' or 'mail', and access to IMs and Chats like Yahoo Messenger, Google Talk, MSN Messenger, etc.

Screen-Shots

Main Section

Web Filter Proxy Interface Screen-shot - URL Filter

Allow / Deny Subsection

Web Filter Proxy Interface Screen-shot - URL Filter

Main Section

Enabled
This option allows you to enable, or completely disable the URL Blacklist Section irrespective of the rules defined in the section

Yes - Enable URL Blacklist Section
No - Disable URL Blacklist Section

Policy
Defines the Global Policy for the URL filtering Section

Allow - Allow everything, and deny ONLY the rules under the 'Deny' subsection
Deny - Deny everything, and allow ONLY the rules under the 'Allow' subsection

Default template
The template to display for blocked sites. If left blank, default template is used. You can design and display custom templates. For details, check Customizable Templates

Allow / Deny Sub-Section

You can define rules either under the Allow or Deny subsection, depending on the selected Policy. If Policy is Allow, you should define rules under the Deny subsection, and If Policy is Deny, you should define rules under the Allow subsection.

Enabled
This option allows you to enable or disable a specific entry.

Yes - Enable entry
No - Disable entry

Comment
A comment for future reference explaining what this rule does

Profiles
A comma separated list of Profiles on which this rule should apply. The rule applies to every thing if this field is left blank

Host
A regular expression matching the host on which this rule should apply. You can define multiple hosts seperated with pipe. E.g. (safesquid.com|yoursite.org|mysite.net). Leave this field blank to apply to all hosts.

File
You can further fine tune the rule by specifying a regular expression for the file part contained in a URL, to restrict access to only specific file / folder on the hosts mentioned in the Host field (applies to all if Host field is left blank). E.g. if you would like to restrict access to ads or banners on mysite.com, specify mysite.com in Host and /ad(|s|v|(|_)banner(|s))/ in the File field. This will block access only to mysite.com/ad/ or mysite.com/ads/ or mysite.com/adv/ or mysite.com/banner/ or mysite.com/banners/

IP ranges
A comma separated list of requesting IPs and / or IP ranges on which this rule to apply. E.g.
192.168.0.10-192.168.0.20,192.168.0.25-192.168.0.29,192.168.0.33

Template
This field can be used to send a customized template, instead of the default template, when a URL is blocked specifically due to this rule.

Example

Suppose you wanted to restrict the 'Accounts' group from accessing some specific web sites.
Create the following entry in the Profiles section:

Web Filter Proxy Interface Screen-shot - URL Filter

Next, go to the URL filter section and add the following rule under Deny subsection (Presuming that Policy is Allow).

Web Filter Proxy Interface Screen-shot - URL Filter

The first rule defines that when users with 'Accounts' profile, request for the sites specified in Host field, give that request another profile - Blocked-Site. This rule only defines the situation, and does not do any blocking. The second rule, defined under URL filter section, blocks all requests with Blocked-Site profile.

Unless otherwise stated, the content of this page is licensed under Creative Commons Attribution-ShareAlike 3.0 License