HTTP > URL Filtering > Policies | Add > Select Account > Specify Rules
HTTP > URL Filtering > Policies | Policy | Rule (to edit an existing policy)
Adding a URL filtering policy is a two-step procedure. First, you create an account
and then you assign URL filtering rules to the new account.
Editing a URL filtering policy requires clicking on the policy name, then clicking
the Rule tab.
 |
Note
URL Filtering for HTTPS sites will not work unless HTTPS decryption is enabled. To
specify URL Filtering settings for HTTPS sites, please go to HTTP > HTTPS Decryption > Policies."
|
-
Enable policy—Enables or disables the individual policy; the global URL Filtering setting overrides
the specifications of an individual policy.
-
URL Category—Choose a filtering action for the URL categories to which you want to restrict access.
There are over 80 categories segmented in seven logical groups. You can create custom
categories in HTTP > Configuration > Custom Categories.
The following describes the available filtering actions:
-
Allow—Connection to the target server is allowed and users can access the Web site.
-
Match Next Policy—Connection to the target server depends on the policy configured
at the next level.
-
Block—Connection to the target server is not established and users are not allowed to access
the Web site. A log entry is also created for this event.
-
Block w/Override—Connection to target service is not established unless the user can type a specific
password to override the category blocking.
|
Note
When you apply the "block with override" action to categories, administrators need
to configure the password used for overriding when creating the policy.
|
-
Monitor—Connection to the target server is allowed and users can access the Web site. A log
entry is also created for this event.
-
Time Limit—Connection to the target server which accesses selected categories of URLs is allowed
for the period of time configured by the administrator.
|
Note
1. Selecting the "Time Limit" action for categories requires administrators to enter
a value in "Time quota" text box in the Time Limit Settings section under the list
of categories.
2. The default quota unit is five minutes. Trend Micro recommends that administrators
set the "Time quota" value to a multiple of five. Otherwise, IWSVA ignores the remainder
less than five. For example, if the value is set to 4 minutes, IWSVA interprets that
as 0 minutes. If the value is set to 9 minutes, system interprets that as 5 minutes.
|
-
Warn—Connection to the target server is allowed but a notification displays, warning users
that the URL about to be accessed belongs to a category that violates company policy.
Users have the option of continuing to the page or going back to the previous page.
-
Action During/Scheduled Times—Select the check box of the category that you want to apply the filtering action during
scheduled times. To select all the categories of a group, click the check box for
the group. The group does not need to be expanded for you to select all categories
in a group. (Restricted days and hours are defined at Administration > IWSVA Configuration > Scheduled Times.) Click Apply to apply the filtering action to the selected categories.
-
Password Override Settings—Specify a password to use for the overriding the blocking action. This is only necessary
if you configure a policy to use the "Block with Override" action setting for a URL
Filtering category. Passwords are policy-specific.
-
Time Limit Settings—Specify a time limit value (in minutes or hours) to use for the time limit action.
This is only necessary if you configure a policy to use the "Time Limit" action setting
for a URL Filtering category. Time limits are policy-specific.
-
Notes—Use to create policy notes, for example, to summarize the intent or justification
for the policy. It can serve as a simple reminder or as a communication to others
who could later administer URL Filtering.
See also:
