USG FLEX 200 - Blocked URL Keywords to block download of certain files
I thought I could use Blocked URL Keywords to prevent downloading of specific file types (e.g. .exe, .scr, .bat files).
I have a working active Profile for Content Filtering and the Forbidden Web Sites is working for domain names.
However, Blocked URL Keywords doesn't seem to do anything.
For example, to block .scr files, I've tried:
*.scr*
*.scr
/*.scr
*/*.scr
*/*.scr*
The idea is to block access to e.g. www.anydomain.com/path/to/someFile.scr
And I do have "Enable HTTPS Domain Filter for HTTPS traffic" checked.
But nothing's being blocked. Am I doing something wrong?
All Replies
-
It can't be done all the Filter for HTTPS traffic does is sees the SNI like hb.yahoo.net it does not see the link and file extension not sure if ssl inspection will help?
0 -
So yes you need to enable SSL inspection
https://support.zyxel.eu/hc/en-us/articles/12582990829458-SSL-Inspection-Security-Services-Best-Practice-for-Firewalls
Then you can use Keywords in Content Filtering
0 -
Hi @aed_alt
Currently, the Content Filter supports an FQDN-based blocked list. Therefore you can configure the website's FQDN www.anydomain.com in the Forbidden Web Sites as a replacement solution.
0
Guru Member
Zyxel Employee
Categories
- All Categories
- 384 Beta Program
- 2.1K Nebula
- 117 Nebula Ideas
- 80 Nebula Status and Incidents
- 5.1K Security
- 79 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 69 Switch Ideas
- 910 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 209 Service & License
- 335 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 898 Nebula FAQ
- 415 Security FAQ
- 234 Switch FAQ
- 205 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 73 About Community
- 62 Security Highlight
