1.
Go to Objects > ALG
2.
In the table, click on the recently created HTTP ALG to view its properties
3.
Click the HTTP URL tab
4.
Now click Add and select HTTP ALG URL from the menu
5.
Select Whitelist as the Action
6.
In the URL textbox, enter www.D-Link.com/*.exe
7.
Click OK
Simply continue adding specific blacklists and whitelists until the filter satisfies the needs.
6.3.4. Dynamic Web Content Filtering
6.3.4.1. Overview
As part of the HTTP ALG, NetDefendOS supports Dynamic Web Content Filtering (WCF) of web
traffic, which enables an administrator to permit or block access to web pages based on the content
of those web pages.
WCF Databases
NetDefendOS WCF allows web page blocking to be automated so it is not necessary to manually
specify which URLs to block or allow. Instead, D-Link maintains a global infrastructure of
databases containing massive numbers of current web site URL addresses, grouped into a variety of
categories such as shopping, news, sport, adult-oriented and so on.
The WCF URL databases are updated almost hourly with new, categorized URLs while at the same
time older, invalid URLs are dropped. The scope of the URLs in the databases is global, covering
websites in many different languages and hosted on servers located in many different countries.
Dynamic Web Content Filtering Availability on D-Link Models
Dynamic Content Filtering is available on the D-Link DFL-260 and DFL-860 only.
WCF Processing Flow
When a user requests access to a web site, NetDefendOS sends a query to the WCF databases in
order to retrieve the category of the requested site. The user is then granted or denied access to the
site based on the filtering policy in place for that category.
If access is denied, a web page will be presented to the user explaining that the requested site has
been blocked. To make the lookup process as fast as possible NetDefendOS maintains a local cache
of recently accessed URLs. Caching can be highly efficient since a given user community, such as a
group of university students, often surfs to a limited range of websites.
Figure 6.6. Dynamic Content Filtering Flow
6.3.4. Dynamic Web Content Filtering
Chapter 6. Security Mechanisms
245
Содержание 800 - DFL 800 - Security Appliance
Страница 24: ...1 3 NetDefendOS State Engine Packet Flow Chapter 1 NetDefendOS Overview 24 ...
Страница 69: ...2 6 4 Restore to Factory Defaults Chapter 2 Management and Maintenance 69 ...
Страница 121: ...3 9 DNS Chapter 3 Fundamentals 121 ...
Страница 166: ...interfaces without an overriding IGMP Setting Default 1 000 4 6 4 Advanced IGMP Settings Chapter 4 Routing 166 ...
Страница 181: ...4 7 5 Advanced Settings for Transparent Mode Chapter 4 Routing 181 ...
Страница 192: ...5 5 IP Pools Chapter 5 DHCP Services 192 ...
Страница 282: ...6 7 Blacklisting Hosts and Networks Chapter 6 Security Mechanisms 282 ...
Страница 300: ...mechanism 7 3 7 SAT and FwdFast Rules Chapter 7 Address Translation 300 ...
Страница 301: ...7 3 7 SAT and FwdFast Rules Chapter 7 Address Translation 301 ...
Страница 303: ... Changed on a regular basis such as every three months 8 1 Overview Chapter 8 User Authentication 303 ...
Страница 318: ...8 3 Customizing HTML Pages Chapter 8 User Authentication 318 ...
Страница 322: ...ALG 9 1 5 The TLS Alternative for VPN Chapter 9 VPN 322 ...
Страница 377: ...Management Interface Failure with VPN Chapter 9 VPN 377 ...
Страница 408: ...10 4 6 SLB_SAT Rules Chapter 10 Traffic Management 408 ...
Страница 419: ...11 5 HA Advanced Settings Chapter 11 High Availability 419 ...
Страница 426: ...12 3 5 Limitations Chapter 12 ZoneDefense 426 ...
Страница 449: ...13 9 Miscellaneous Settings Chapter 13 Advanced Settings 449 ...