Content filtering

Dpj · January 9

today, next step in securing our network. Content Filtering. This morning i was testing it, and it seems to work, but the results is different from time to time.

sometimes i get this:

the next time i get this:

or this…

or even this:

sometimes, just with an refresh of the page i get a different page. Of course i always want to get the first one…

yours dennis

Zyxel_Melen · January 10

Hi @Dpj,

May I know some details about your testing so I can investigate this issue better?

Your model.
Firmware version.
Your security service configurations.
The URL/website you tested.

Thanks!

Dpj · January 10

Hello Melen,

I got an USG Flex 200, configured in Nebula

Firmware version V5.39(ABUI.1)

Under the categor lyist i selected for example "Online Shopping", "Social networking" and "Streaming Media".

In the Security Policies i created the following:

(I readed also about the Block Quick Ports), so i added those also.

When i open ah.nl:

which belongs to Online shopping (just an example), get i this in Edge:

but in an other browser i get:

I would expect, i got the nice looking page, as mentioned before.

when i open for example X.com, in edge, i got also this page:

(of course then with x.com as site instead of ah.nl)

Yours dennis

Dpj · January 16

is there anything news about this?

Zyxel_Melen · January 17

Hi @Dpj

I have reproduced this case and found the difference is on "https://"

I'm checking with our engineer why we have this difference. I will update you once I have further information.

Zyxel_Melen · 11:19AM

Hi @Dpj,

I apologize for the delayed reply. After checking, this behavior difference is because the browser might send a DNS query via HTTPS, in other words, DNS over HTTPS(DOH). The firewall can't monitor DOH traffic and take any actions.

In addition, both outcomes mean the site is blocked.

Content filtering

All Replies

Categories

Nebula Tips & Tricks

Nebula Help Center