How to Configure DNS Content Filter

Options
Zyxel_Emily
Zyxel_Emily Posts: 1,306  Zyxel Employee
First Anniversary 10 Comments Friend Collector First Answer
edited November 2023 in Security Service

Compared to web content filter, DNS content filter is a stronger tool for SMB because it can restrict the number of attacks faced by network access, thereby helping to reduce the remediation workload of IT professionals.

DNS content filter intercept DNS request from client, check the domain name category and takes a corresponding action, reducing the risk of phishing attacks, and obfuscate source IPs using hijacked domain names. Fully customizable blacklist to ban access to any unwanted domains and prevent reaching those known domains hosting malicious content. This example shows how to configure DNS Content Filter to block users in the local network to access the gaming websites.

image.png

Set Up the DNS Content Filter
Go to Security Service > Content Filtering > For DNS Domain scan. Turn on this feature. Select Redirect IP for the Blocked Domain. If user selects the default, when client hits DNS Content Filter profile, the page will be redirected to block page http://dnsft.cloud.zyxel.com/.

image.png

Add a new profile in Profile Management to block gaming websites.

image.png

Action: block
Log: log or log alert

image.png

Enable the checkbox of "Games" in managed categories.

image.png

Apply the profile to security policy. In this example, the profile is applied to security policy rule “LAN_Outgoing”.

image.png

Test the Result
Access a gaming website blizzard.com. The gateway will redirect you to a blocked page.

image.png

Go to Log & Report > Log/Events and select Content Filter to check the logs.

image.png

Go to Security Statistics > Content Filter to check summary of all events.

image.png
image.png

Categories

EnglishTiếng ViệtРусскийไทย中文(台灣)