USG FLEX 200 - Blocked URL Keywords to block download of certain files
I thought I could use Blocked URL Keywords to prevent downloading of specific file types (e.g. .exe, .scr, .bat files).
I have a working active Profile for Content Filtering and the Forbidden Web Sites is working for domain names.
However, Blocked URL Keywords doesn't seem to do anything.
For example, to block .scr files, I've tried:
*.scr*
*.scr
/*.scr
*/*.scr
*/*.scr*
The idea is to block access to e.g. www.anydomain.com/path/to/someFile.scr
And I do have "Enable HTTPS Domain Filter for HTTPS traffic" checked.
But nothing's being blocked. Am I doing something wrong?
All Replies
-
It can't be done all the Filter for HTTPS traffic does is sees the SNI like hb.yahoo.net it does not see the link and file extension not sure if ssl inspection will help?
0 -
So yes you need to enable SSL inspection
https://support.zyxel.eu/hc/en-us/articles/12582990829458-SSL-Inspection-Security-Services-Best-Practice-for-Firewalls
Then you can use Keywords in Content Filtering
0 -
Hi @aed_alt
Currently, the Content Filter supports an FQDN-based blocked list. Therefore you can configure the website's FQDN www.anydomain.com in the Forbidden Web Sites as a replacement solution.
0
Categories
- All Categories
- 429 Beta Program
- 2.6K Nebula
- 163 Nebula Ideas
- 112 Nebula Status and Incidents
- 6K Security
- 350 USG FLEX H Series
- 291 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.6K Consumer Product
- 261 Service & License
- 407 News and Release
- 87 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.8K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 82 Security Highlight