Web Filter URL filter
FortiGate Version 4.0 MR1 Administration Guide
01-410-89802-20090903 555
http://docs.fortinet.com/ • Feedback
Figure 330: New pattern
URL filter
Allow or block access to specific URLs by adding them to the URL filter list. Add patterns
using text and regular expressions (or wildcard characters) to allow or block URLs. The
FortiGate unit allows or blocks web pages matching any specified URLs or patterns and
displays a replacement message instead.
Action Select one of:
Block — If the pattern matches, the Score is added to the total for the web page.
The page is blocked if the total score of the web page exceeds the web content
block threshold defined in the protection profile.
Exempt — If the pattern matches, the web page will not be blocked even if there
are matching Block entries.
Pattern Enter the content pattern. Web content patterns can be one word or a text string
up to 80 characters long.
For a single word, the FortiGate unit checks all web pages for that word. For a
phrase, the FortiGate checks all web pages for any word in the phrase. For a
phrase in quotation marks, the FortiGate unit checks all web pages for the entire
phrase.
Pattern Type Select a pattern type from the dropdown list: Wildcard or Regular Expression.
Language The character set to which the pattern belongs: Simplified Chinese, Traditional,
Chinese, French, Japanese, Korean, Thai, or Western.
Score Enter a score for the pattern.
When you add a web content list to a protection profile you configure a web
content filter threshold for the protection profile. When a web page is matched with
an entry in the content block list, the score is recorded. If a web page matches
more than one entry the score for the web page increases. When the total score
for a web page equals or exceeds the threshold, the page is blocked.
The default score for a content list entry is 10 and the default threshold is 10. This
means that by default a web page is blocked by a single match. You can change
the scores and threshold so that web pages can only be blocked if there are
multiple matches. For more information, see “Web Filtering options” on page 493.
Enable Select to enable the entry.
Note: Enable Web filtering > Web URL Filter in a firewall Protection Profile to activate the
URL filter settings.
Note: URL blocking does not block access to other services that users can access with a
web browser. For example, URL blocking does not block access to
ftp://ftp.example.com. Instead, use firewall policies to deny FTP connections.
To Next Page
Loading...
Need help?
General
