Content filter not working properly

Options
nielsscheldeman
nielsscheldeman Posts: 40  Freshman Member
First Anniversary 10 Comments Friend Collector
in Security

Couple of months ago I set up an ATP200 with Content filter enabled at a client. Now he says that the users are able to surf to playboy.com. I did some tests:

If I enter the website in URL to test it says that it is categorised under pornography, so ok.

Filter is applied to LAN1_Outgoing

If I turn on logging on LAN1_Outgoing and I surf to playboy.com it says in the logs that it's passing this rule. But the website is indeed accessible from a computer, but if I use http://pl… I get proper warning of Access Restricted. So it seems that https does pass? Enable HTTPS Domain Filter for HTTPS Traffic is turned on.

All Replies

  • WJS
    WJS Posts: 142  Ally Member
    First Anniversary 10 Comments Friend Collector First Answer
    Options

    Try this guide to find where's the problem.

    https://community.zyxel.com/en/discussion/17688/if-you-think-the-content-filter-is-not-working-as-expected

  • nielsscheldeman
    nielsscheldeman Posts: 40  Freshman Member
    First Anniversary 10 Comments Friend Collector
    Options

    The content filter still not working fine…

    Added a rule with priority 1 for QUIC Ports

    afbeelding.png

    Some sites are blocked, mostly not. For example, customer wants me to block wps.com

    So in that filter which is applied to LAN1 outgoing, I added in Forbidden websites *.wps.com or wps.com. But still accessible?

  • electsystech
    electsystech Posts: 31  Freshman Member
    First Anniversary 10 Comments Friend Collector
    Options

    Setup a DNS filter policy as well, like this. The Zywall DNS policy needs to be separate from the Filtered DNS policy.

    image.png

  • nielsscheldeman
    nielsscheldeman Posts: 40  Freshman Member
    First Anniversary 10 Comments Friend Collector
    Options
    https://community.zyxel.com/en/discussion/comment/65456#Comment_65456

    Hello,

    Yes I've set DNS Filter also and works much better now. Would it work even better if I use DNS Server from ZyWALL then since I see u set also a policy for DNS to ZyWALL

  • PeterUK
    PeterUK Posts: 2,846  Guru Member
    First Anniversary 10 Comments Friend Collector First Answer
    edited May 16
    Options

    The DNS Filter works from LAN to WAN as well as LAN to Zywall you can choose to block DNS LAN to WAN if you want

  • nielsscheldeman
    nielsscheldeman Posts: 40  Freshman Member
    First Anniversary 10 Comments Friend Collector
    edited May 16
    Options

    Now I'm trying to work with a whitelist for 2 computers within the same LAN. I gave them fix IP and added a rule with higher priority then LAN1_Outgoing with only category filter. But the devices are still able to surf to any website? These are my settings below

    afbeelding.png
    afbeelding.png
    afbeelding.png

  • PeterUK
    PeterUK Posts: 2,846  Guru Member
    First Anniversary 10 Comments Friend Collector First Answer
    edited May 16
    Options

    would you need to set DNS Filter too on that rule?

    You can do top rule block DNS LAN to WAN

    Then a rule below LAN to WAN DNS Filter and Web Filter

    and LAN to Zywall DNS Filter

Categories

Security Highlight


Read more

Security Help Center

EnglishTiếng ViệtРусскийไทย中文(台灣)