seems no matter what I do the custom websites options seems not to work?
I tried for a few days to get the custom Service working with absolutely zero success.
I am trying to block all access to this domain, period, as we are getting a lot of phishing and spam from this domain.
Sample URL, that im trying to block
Is it possible to advise how to get this working properly?
Device Information
System Name
CFTS-ATP-800
Serial Number
S232L09102880
MAC Address Range
FC:22:F4:E1:68:8B ~ FC:22:F4:E1:68:98
Firmware Version
V5.37(ABIQ.2) / 2024-01-20 02:14:39
All Replies
-
If the browser is not using a VPN or proxy you should be able to block it.
Have you applied the Content Filter to a policy control rule? Have you tried the DNS Content Filter too?
Block UDP 443 from LAN to WAN
0 -
Yes, to all except UDP 443, I need a little explanation on that, im not using a VPN.
0 -
QUIC uses UDP port 443 instead of TCP 443 the way Content Filter works for TCP 443 is by SNI in the clear but if a web site uses QUIC Content Filter can't work by blocking this it forces the browser to use TCP 443
also run this in console
debug content-filter https-domain-filter cache flush
0 -
Thanks, done as suggested, still not working, Tomorrow I make some system wide rules and see if I can pin down whats going on.
0 -
OK did a system wide test, it seems the custom rules do not work, the content filter profile is working just fine, its the custom side that is not!
0 -
Try adding *cloudflare-ipfs.com to the forbidden websites.
0
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 148 Nebula Ideas
- 96 Nebula Status and Incidents
- 5.7K Security
- 262 USG FLEX H Series
- 271 Security Ideas
- 1.4K Switch
- 74 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.4K Consumer Product
- 249 Service & License
- 387 News and Release
- 84 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.5K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 73 Security Highlight