[ATP/FLEX] How to Set Up DNS/URL Threat Filter on Nebula
Nebula Control Center provides the DNS/URL Threat Filter that can avoid users to browse some malicious FQDNs and URLs and allows administrator to manage what URLs can be browsed or not. You can create a DNS/URL Threat Filter profile in the security service path on the Nebula and this article will guide you how to deploy it.
1. Navigate to Firewall > Configure > Security Service, click +Add to edit DNS/URL Threat Filter profile.
2. Configure DNS/URL Threat Filter profile
Log – Create an event log when the device detects a connection attempt to or from the web pages of the specified categories in DNS/URL Threat Filter profile.
To enable DNS DNS/URL Threat Filter
URL Threat Filter Denied Access Message – Enter a message to be displayed when the URL Threat Filter blocks access to a web page. The default message is “Web access is restricted. Please contact the administrator.”
Category list – You can enable the malicious categories that you would like to block it such as: Anonymizers, Browser Exploits, Malicious Downloads, Malicious Sites, Phishing, Spam URLs, Spyware/Adware/Keyloggers, etc.
Block list – Enter the URLs list that you would like to block, the FQDN supports wildcard format such as *zyxel.com.
White list - Enter the URLs list that you would like to bypass, the FQDN supports wildcard format such as *zyxel.com.
URL Threat Filter external block list - You can use an external URL DB to extend your
block list. Please enter the profile name, external DB links such as
http://172.16.107.20/blacklist-files/myip-ebl.txt, and description.
If you navigate to the malicious URLs and you would be blocked.
The event log would show Threat Filter block messages, too.
To test the URL and it would
be identified as a malicious URL
- 8.4K All Categories
- 1.6K Nebula
- 71 Nebula Ideas
- 57 Nebula Status and Incidents
- 4.5K Security
- 226 Security Ideas
- 981 Switch
- 46 Switch Ideas
- 872 WirelessLAN
- 22 WLAN Ideas
- 5.1K Consumer Product
- 157 Service & License
- 280 News and Release
- 97 Success Stories
- 59 Security Advisories
- 13 Education Center
- 579 FAQ
- 262 Nebula FAQ
- 160 Security FAQ
- 76 Switch FAQ
- 74 WirelessLAN FAQ
- 7 Consumer Product FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 69 About Community
- 46 Security Highlight