|
|
There are three Content Filter Lists available in the Content Filter Type menu for use with your SonicWALL:
Tip!
You can get a free tiral of SonicWALL by clicking on FREE TRIAL
on the CFS page.
N2H2 - N2H2 is a third party content filter software package supported by SonicWALL. You can obtain more information on N2H2 at www.n2h2.com. If you select N2H2 from the list, an N2H2 tab is available to configure the location of the N2H2 server and other settings.
Websense Enterprise - Websense Enterprise is also a third party content filter list package supported by SonicWALL. You can obtain more information on Websense Enterprise at www.websense.com. If you select Websense Enterprise from the list, a Websense tab is available to configure the location of the Websense server and other settings.
You can choose to enforce content filtering and Restrict Web Features on the LAN, DMZ, or both ports. Select LAN, DMZ, or both ports in Apply filter and Restrict Web Features on. Both LAN and DMZ ports are selected by default.
Restrict Web Features enhances your network security by blocking potentially harmful Web applications from entering your network. Select any of the following applications to block:
ActiveX - ActiveX is a programming language that embeds scripts in Web pages. Malicious programmers can use ActiveX to delete files or compromise security. Select the ActiveX check box to block ActiveX controls.
Java - Java is used to download and run small programs, called applets, on Web sites. It is safer than ActiveX since it has built-in security mechanisms. Select the Java check box to block Java applets from the network.
Cookies - Cookies are used by Web servers to track Web usage and remember user identity. Cookies can also compromise users' privacy by tracking Web activities. Select the Cookies check box to disable Cookies.
Known Fraudulent Certificates - Digital certificates help verify that Web content and files originated from an authorized party. Enabling this feature protects users on the LAN from downloading malicious programs warranted by these fraudulent certificates. If digital certificates are proven fraudulent, then the SonicWALL blocks the Web content and the files that use these fraudulent certificates. Known fraudulent certificates blocked by SonicWALL include two certificates issued on January 29 and 30, 2001 by VeriSign to an impostor masquerading as a Microsoft employee.
Access to HTTP Proxy Servers - When a proxy server is located on the WAN, LAN users can circumvent content filtering by pointing their computer to the proxy server. Check this box to prevent LAN users from accessing proxy servers on the WAN.
Don’t Block Java/ActiveX/Cookies to Trusted Domains - Select this option if you have trusted domains using Java, ActiveX, and Cookies. To add a trusted domain, enter the domain name into the Add Trusted Domain field. Click Update to add the domain to the list of trusted domains. To delete a domain, select it from the list, and then click Delete.
Add Trusted Domains - If you trust content on specific domains, after you select Don’t block Java/ActiveX/Cookies to Trusted Domains, add the Trusted Domains to the SonicWALL using the Add Trusted Domain field. Java scripts, ActiveX, and cookies are not blocked from Trusted Domains if the checkbox is selected.
Enter your customized text to display to the user when access to a blocked site is attempted. The default message is This site blocked by SonicWALL Content Filter Service. Any message, including embedded HTML, up to 255 characters long, can be entered in this field.