1.
Go to Objects > ALG
2.
In the table, click on the recently created HTTP ALG to view its properties
3.
Click the HTTP URL tab
4.
Now click Add and select HTTP ALG URL from the menu
5.
Select Whitelist as the Action
6.
In the URL textbox, enter www.D-Link.com/*.exe
7.
Click OK
Simply continue adding specific blacklists and whitelists until the filter satisfies the needs.
6.3.4. Dynamic Web Content Filtering
6.3.4.1. Overview
As part of the HTTP ALG, NetDefendOS supports Dynamic Web Content Filtering (WCF) of web
traffic, which enables an administrator to permit or block access to web pages based on the content
of those web pages.
WCF Databases
NetDefendOS WCF allows web page blocking to be automated so it is not necessary to manually
specify which URLs to block or allow. Instead, D-Link maintains a global infrastructure of
databases containing massive numbers of current web site URL addresses, grouped into a variety of
categories such as shopping, news, sport, adult-oriented and so on.
The WCF URL databases are updated almost hourly with new, categorized URLs while at the same
time older, invalid URLs are dropped. The scope of the URLs in the databases is global, covering
websites in many different languages and hosted on servers located in many different countries.
Dynamic Web Content Filtering Availability on D-Link Models
Dynamic Content Filtering is available on the D-Link DFL-260 and DFL-860 only.
WCF Processing Flow
When a user requests access to a web site, NetDefendOS sends a query to the WCF databases in
order to retrieve the category of the requested site. The user is then granted or denied access to the
site based on the filtering policy in place for that category.
If access is denied, a web page will be presented to the user explaining that the requested site has
been blocked. To make the lookup process as fast as possible NetDefendOS maintains a local cache
of recently accessed URLs. Caching can be highly efficient since a given user community, such as a
group of university students, often surfs to a limited range of websites.
Figure 6.6. Dynamic Content Filtering Flow
6.3.4. Dynamic Web Content Filtering
Chapter 6. Security Mechanisms
245
Summary of Contents for 800 - DFL 800 - Security Appliance
Page 24: ...1 3 NetDefendOS State Engine Packet Flow Chapter 1 NetDefendOS Overview 24 ...
Page 69: ...2 6 4 Restore to Factory Defaults Chapter 2 Management and Maintenance 69 ...
Page 121: ...3 9 DNS Chapter 3 Fundamentals 121 ...
Page 181: ...4 7 5 Advanced Settings for Transparent Mode Chapter 4 Routing 181 ...
Page 192: ...5 5 IP Pools Chapter 5 DHCP Services 192 ...
Page 282: ...6 7 Blacklisting Hosts and Networks Chapter 6 Security Mechanisms 282 ...
Page 300: ...mechanism 7 3 7 SAT and FwdFast Rules Chapter 7 Address Translation 300 ...
Page 301: ...7 3 7 SAT and FwdFast Rules Chapter 7 Address Translation 301 ...
Page 318: ...8 3 Customizing HTML Pages Chapter 8 User Authentication 318 ...
Page 322: ...ALG 9 1 5 The TLS Alternative for VPN Chapter 9 VPN 322 ...
Page 377: ...Management Interface Failure with VPN Chapter 9 VPN 377 ...
Page 408: ...10 4 6 SLB_SAT Rules Chapter 10 Traffic Management 408 ...
Page 419: ...11 5 HA Advanced Settings Chapter 11 High Availability 419 ...
Page 426: ...12 3 5 Limitations Chapter 12 ZoneDefense 426 ...
Page 449: ...13 9 Miscellaneous Settings Chapter 13 Advanced Settings 449 ...