How to setup Security Services to block website on USG FLEX H on Nebula?

Zyxel_Stanley

Security Services

The Security Services on FLEX H firewall could help to protect your network to prevent clients to accessing unsafe websites. Also you can prevent your client to accessing selected web site by Content Filter , Application Patrol services.

This is an example to setup Content Filter and Application Patrol profiles to block Porn page related category and web sites.

Configuration

Go to Site-wide > Configure > Firewall > Security service

• Content Filter
  Click +Add to add a new Content Filter profile

1. Setup the profile name.
2. You can enter the URL to test the web page category.
3. You can select the the web category from drop-down list.
4. You can enter the URL for block web page. (wildcard is supported)
5. You can enter the URL for Allow web page. (wildcard is supported)

• Application Patrol
  Click +Add to add a new Application Patrol profile

1. Setup the profile name.
2. You can search application in the bar, and click +Add button to create the rule.
3. The actions of the selected application.

• Security Policy
  Go to Site-wide > Configure > Firewall > Security policy
  Click +Add to add a new Security policy rule

1. The Action setting must be "Allow".
2. Select Content Filter and Application Patrol profiles in the rule.
3. & 4. Source and Destination is meaning the duration of the session.

• Configuration verify
  You can login to the web GUI and go to Security Policy > Policy Control to check if the security policy rule is added correctly to USG FLEX H.

Verification

Access to some of porn web site and have check if it is unavailable. (https://pornhub.com)

Go to Site-wide > Monitor > Firewall > Event log check if there is blocked log.