Rules

The procedure for editing a URL filter profile is as follows:

  1. Select a profile from the list of URL filter profiles.
  2. The filter table will then appear with a screen listing all errors found in the policy.

NOTE
To set up a URL/SSL filter policy, you are advised to operate in blacklist mode, i.e., explicitly group the URL categories to be prohibited in a custom URL group. A URL/SSL filter rule will then be applied to this group with a block action. This rule must then be placed above the rule that allows all the other categories.

Possible operations

A multiple selection allows assigning the same action to several rules. Select several successive alarms using the Shift ñkey or individually by holding down the Ctrl key. You can also remove an item from an existing selection with the Ctrl key.

Some column titles have the icon . When you click on it, a menu appears and suggests assigning a setting to several selected rules (Status and Action).

EXAMPLE
Several lines can be deleted at the same time, by selecting them with the Ctrl key and pressing on Delete.

The available buttons are:

Add Inserts a line to be configured after the selected line.
Delete Deletes the selected line.
Move up Places the selected line before the line just above it.
Move down Places the selected line after the line just below it.
Cut Removes the selected line and moves it to the clipboard.
Copy Copies the selected line and moves it to the clipboard.
Paste Pastes the line from the clipboard above the selected line.
Add all predefined categories This button makes it possible to create as many filter rules as the number of URL categories in the selected URL base at once.
All rules created in this way are enabled and the associated action by default is a redirection to the block page BlockPage_00.

Interactive features

Some operations listed in the taskbar can be performed by right-clicking on the table of filter rules:

  • Add,
  • Delete,
  • Cut,
  • Copy,
  • Paste.

Rule grid

The table contains the following columns:

Status Status of the rule:
  • Enabled, the rule will be active when this filter policy is selected.
  • Disabled, the rule will not be operational. The line will be grayed out in order to reflect this.

REMARK
The firewall will assess rules in their order of appearance on the screen: one by one from the top down. As soon as it comes across a rule that corresponds to the request, it will perform the specified action and stop there. This means that if the action specified in the rule corresponds to Block, all rules below it will also be set to Block.

Action Allows specifying the result of the rule: Pass to allow the site, Block to prohibit access and directly shut down the connection without displaying a block message.

It is possible to Block and redirect to a block page in order to prohibit access and display one of the 4 available HTML block pages. These pages can be customized in the menu Notifications, Block messages module and HTTP block pages tab.
URL category or group The name of a URL category or a group of categories created earlier. By clicking on this field, a drop-down list will prompt you to select a URL category or a group of categories, taken from the objects database.

The group <Any> corresponds to any URL, even if it does not belong to any URL category or group.
Comments Comments relating to the rule.

Errors found in the URL filter policy

The screen for editing URL filter rules on the firewall has a rule compliance and coherence analyzer which warns the administrator when a rule inhibits another rule or if there is an error in a rule.

This analyzer groups errors during the creation of rules or incoherent rules.

Errors are displayed in the form of a list. By clicking on an error, the rule concerned will automatically be selected.