After you Determine URL Filtering Policy Requirements,
you should have a basic understanding of what types of websites
and website categories your users are accessing. With this information,
you are now ready to create custom URL filtering profiles and attach
them to the security policy rule(s) that allow web access.
Create a URL Filtering profile or select an existing
Because the default URL filtering
profile blocks risky and threat-prone content, it is a best practice
to clone this profile to preserve these default settings, rather
than creating a new profile.
Select the default profile and then click
The new profile will be named default-1.
Select the new profile and rename it.
Define how to
control access to web content.
tab, for each
category that you want visibility into or control over, select a
value from the
column as follows:
If you do not care about traffic to a particular category (that
is you neither want to block it nor log it), select
For visibility into traffic to sites in a category, select
To deny access to traffic that matches the category and to enable
logging of the blocked traffic, select
To require users to click Continue to proceed to a questionable
To only allow access if users provide a configured password,
select override. For more details on this setting, see Configure URL Admin Override.
websites that should always be blocked or allowed.
For example, to reduce URL filtering logs, you may want
add you corporate websites in the allow list, so no logs will be
generated for those sites. Or, if there is a website this is being
overly used and is not work related in any way, you can add it to
the block list.
Items in the block list will always be blocked
regardless of the action for the associated category, and URLs in
the allow list will always be allowed.
is enabled by default so that only the main page that matches the
category is logged, not subsequent pages/categories that may be
loaded within the container page. To enable logging for all pages/categories,