Content filter not working properly
Ally Member
Couple of months ago I set up an ATP200 with Content filter enabled at a client. Now he says that the users are able to surf to playboy.com. I did some tests:
If I enter the website in URL to test it says that it is categorised under pornography, so ok.
Filter is applied to LAN1_Outgoing
If I turn on logging on LAN1_Outgoing and I surf to playboy.com it says in the logs that it's passing this rule. But the website is indeed accessible from a computer, but if I use http://pl… I get proper warning of Access Restricted. So it seems that https does pass? Enable HTTPS Domain Filter for HTTPS Traffic is turned on.
All Replies
-
Try this guide to find where's the problem.
1 -
The content filter still not working fine…
Added a rule with priority 1 for QUIC Ports
Some sites are blocked, mostly not. For example, customer wants me to block wps.com
So in that filter which is applied to LAN1 outgoing, I added in Forbidden websites *.wps.com or wps.com. But still accessible?
0 -
Setup a DNS filter policy as well, like this. The Zywall DNS policy needs to be separate from the Filtered DNS policy.
0 -
Hello,
Yes I've set DNS Filter also and works much better now. Would it work even better if I use DNS Server from ZyWALL then since I see u set also a policy for DNS to ZyWALL
0 -
The DNS Filter works from LAN to WAN as well as LAN to Zywall you can choose to block DNS LAN to WAN if you want
0 -
Now I'm trying to work with a whitelist for 2 computers within the same LAN. I gave them fix IP and added a rule with higher priority then LAN1_Outgoing with only category filter. But the devices are still able to surf to any website? These are my settings below
0 -
would you need to set DNS Filter too on that rule?
You can do top rule block DNS LAN to WAN
Then a rule below LAN to WAN DNS Filter and Web Filter
and LAN to Zywall DNS Filter
0 -
Try the weekly
0 -
Really struggling with it. Previous things didn't work, also because I wanted to use different DNS Servers then the ZyWALL I Guess.
For the whitelist I have 2 computers that may only access 2 websites
1 Computer in separate VLAN which i gave DNS address to ZyWALL → works fine now with only DNS Filter on it.
Another computer which is domain joined and gets DNS Address from Domain Controller. So here I think I can't use DNS Filter. But Web filtering is not working fine. How to solve this?
0 -
Hi @nielsscheldeman ,
If you still have problem within latest weekly. We can have remote session to clear your problem.
I sent you the avaialble time by PM.
Thank you
0
Master Member
Guru Member
Zyxel Employee
Categories
- All Categories
- 439 Beta Program
- 2.8K Nebula
- 200 Nebula Ideas
- 126 Nebula Status and Incidents
- 6.3K Security
- 499 USG FLEX H Series
- 323 Security Ideas
- 1.6K Switch
- 84 Switch Ideas
- 1.3K Wireless
- 49 Wireless Ideas
- 6.8K Consumer Product
- 287 Service & License
- 457 News and Release
- 89 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.3K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 96 Security Highlight
