Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

sonicwall content filter exceptions

Posted on 2015-01-29
2
Medium Priority
?
363 Views
Last Modified: 2015-01-30
I have a Sonicwall TZ215 that we have "clamped" down fairly tight.   In the Content Filter policy URL list for forbidden categories we have # 30 EMail checked and prefer to leave it that way.
However one of our vendors is now using a firm for sending out their monthly updates and it is being blocked as forbidden category-Email
I have tried several things to exclude it but I guess I am not doing it correctly....

I have tried putting it in allowed domain in the custom list of the policy.   I tried using the blocked IP to exclude.  I tried to set up a new "Compliance" group and add users to that group with the forbidden category - Email, Not checked.   (Not sure how to make it apply ahead of the default policy)

Can someone maybe provide some "step by step" directions on how I can get this to be an OK site?
0
Comment
Question by:bankwest
2 Comments
 
LVL 65

Accepted Solution

by:
btan earned 2000 total points
ID: 40579729
pls see if the step through can help and importantly the re-configured policy need to be applied to that zone of interest. Note the Global allow and forbidden list on the settings page is for all policies while the per policy option on the settings is as it stated local to single policy. Eventually the policy will make the effect only on those applied to the selected zones.
http://www.uptimemadeeasy.com/networking/configure-sonicwall-content-filtering/

Also need to know CFS rule application scheme
Most Specific always has the highest priority (i.e. CFS policy for “All” group is least specific, CFS policy for local/authenticated group is more specific, CFS policy for a user is most specific. When policies are at the same level of specificity, the least restrictive option has the highest precedence.
Here is another example using CFS Custom Category instead
This option enables you to customize CFS categories thus overriding global CFS database ratings. For eg. in the screenshot below, cnn.com, which is rated "News and Media" by the global CFS database, is re-rated as Information Technology/Computers - Category 27
If the category News and Media is blocked but cnn.com needs to be allowed, re-categorizing it as an allowed category (in this eg. Information Technology/Computers) would allow cnn.com. The entries here are intrepreted as "suffix strings" meaning any prefix added to cnn.com, eg. us.cnn.com, will be treated as belonging to the custom category.
https://support.software.dell.com/kb/sw8563
0
 

Author Closing Comment

by:bankwest
ID: 40579833
Excellent.   Thank you.    I got it working for what I needed.
0

Featured Post

 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
this video summaries big data hadoop online training demo (http://onlineitguru.com/big-data-hadoop-online-training-placement.html) , and covers basics in big data hadoop .
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…

876 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question