Add a Web Filtering

You are here: Configure > Security Services > UTM > Default Configuration.

Procedure

To add a web filtering:

Select the Web Filtering tab to view or create the web filtering configuration.
The Create Web Filtering page appears.
Complete the configuration according to the guidelines provided in Table 226.
Click OK to save the changes. If you want to discard your changes, click Cancel.

Table 226: Fields on the Create Web Filtering Page

Field	Action
HTTP persist	Configure the web-filtering engine type. Click the check box to enable this option.
HTTP Reassemble	Specifies a unique customized list of all URLs or IP addresses for a given category that are to be bypassed for scanning. Click the check box to enable this option to reassemble HTTP request segments.
Type	Specifies a unique customized list of all URLs or IP addresses for a given category that are scanned for blacklisting. Select from the list: Juniper Enhanced Juniper Local Websense Redirect
URL Blacklist	Specifies a unique customized list of all URLs or IP addresses for a given category that are to be bypassed for scanning. Select an option from the list.
URL Whitelist	Specifies a unique customized list of all URLs or IP addresses for a given category that are scanned for blacklisting. Select an option from the list.
Juniper Enhanced Options Specifies that the Juniper Enhanced Web filtering intercepts the HTTP and the HTTPS requests and sends the HTTP URL or the HTTPS source IP to the Websense ThreatSeeker Cloud (TSC).
Global
Base Filter	Select the base filter from the list.
Custom Block Message	Enter the juniper enhanced custom block message sent to HTTP Client.
Default Action	Juniper enhanced profile default. Select an option from the list. The default action is Log and Permit.
No Safe Search	Specifies not to perform safe-search for Juniper enhanced protocol. Select the check box to enable this option to choose this type of search. Note: Do not perform safe-search for Juniper enhanced protocol
Quarantine Custom Message	Enter the quarantine custom message.
Timeout	Select a timeout interval from 1 to 1800 seconds.
Cache
Size	Specify Juniper enhanced cache size Select a cache size from 0 to 4096 Killobytes.
Time out	Specify Juniper enhanced cache time out. Select a timeout interval from 1 to 1800 seconds.
Block Messages
Type	Select the type of block message from the list.
URL	Enter URL of the block messages.
Fallback Settings
Default	Specifies all errors other than the categorized settings. These could include either unhandled system exceptions (internal errors) or other unknown errors. The available actions are block or log-and-permit. Select an option from the list. The default action is Log and Permit.
Server-connectivity	Specifies that the server connection is not established during certain processes, for example, while the signature database is loading. The available actions are block or log-and-permit. Select an option from the list. The default action is Log and Permit.
Timeout	Specifies that if the time taken to scan exceeds the timeout setting in the Web filtering profile, the processing is aborted and the content is passed or blocked without completing filtering. Select an option from the list. The default action is Log and Permit.
Too-many-requests	Specifies that if the total number of messages received concurrently exceeds the device limits, the content is passed or blocked depending on the too-many-request fallback option. The available actions are block or log-and-permit. Select an option from the list. The default action is Log and Permit.
Category	Specifies a unique customized list of categories. Add (+)—Adds the selected category and the corresponding action to the list of available categories for the Juniper Enhanced Web Ffiltering profile. Delete(X)—Deletes the selected category from the list of available categories for the Juniper Enhanced Web Filtering profile. Select a category from the list.
Action	Specifies the action that the device must take for the category selected. Select Permit, Log and Permit, or Block.
Quarantine Message
Type	Select a type of quarantine message desired.
URL	URL of quarantine message. Enter a valid URL.
Server
Host	Enter the address of the host server.
Port	Enter the port number of the server.
Routing Instance	Select a routing instance.
Proxy Profile	Create a Proxy profile.
Procedure To create a proxy profile: Click Create Profile. Enter the following details: Profile Name - Enter a valid profile name. Connection Type - Select any one option from the following: Server IP—Enter the server IP address Host Name—Enter the host name. Port Number-Enter the port number in the range 0 through 65535. Default port number is 80. Click OK to save the changes. If you want to discard your changes, click Cancel.
Site Reputation Action	Specify the action to be taken depending on the site reputation returned for all types of URLs whether it is categorized or uncategorized. Displays the following options: Very Safe– Permit, log-and-permit, block, or quarantine a request if a site-reputation of 90 through 100 is returned. Moderately Safe– Permit, log-and-permit, block, or quarantine a request if a site-reputation of 80 through 89 is returned. Fairly Safe– Permit, log-and-permit, block, or quarantine a request if a site-reputation of 70 through 79 is returned. Suspicious– Permit, log-and-permit, block, or quarantine a request if a site-reputation of 60 through 69 is returned. Harmful– Permit, log-and-permit, block, or quarantine a request if a site-reputation of zero through 59 is returned. Click Reset to position the slider to the recommended levels.
Juniper Local Select this option to use the Local profile type.
Global
Custom Block Message	Specify the juniper local custom block message sent to HTTP Client. Enter a message to be displayed when content is blocked.
Default Action	Juniper local profile default. Select Log and Permit. The default action is Log and Permit.
Quarantine Custom Message	Enter the Juniper local quarantine custom message.
Timeout	Juniper local timeout. Select a timeout interval from 1 to 1800 seconds.
Block Messages
Type	Select the type of block message.
URL	Enter URL of the block messages.
Fallback Settings
Default	Specifies all errors other than the categorized settings. These could include either unhandled system exceptions (internal errors) or other unknown errors. The available actions are block or log-and-permit. Select Log and Permit. The default action is Log and Permit.
Server-connectivity	Specifies that the server connection is not established during certain processes, for example, while the signature database is loading. The available actions are block or log-and-permit. Select Log and Permit. The default action is Log and Permit.
Timeout	Specifies that if the time taken to scan exceeds the timeout setting in the Web filtering profile, the processing is aborted and the content is passed or blocked without completing filtering. Select Log and Permit. The default action is Log and Permit.
Too-many-requests	Specifies that if the total number of messages received concurrently exceeds the device limits, the content is passed or blocked depending on the too-many-request fallback option. The available actions are block or log-and-permit. Select Log and Permit. The default action is Log and Permit.
Category	Specifies a unique customized list of categories. Add (+)—Adds the selected category and the corresponding action to the list of available categories for the Juniper Local Web Filtering profile. Edit (+)—Edits the selected category and the corresponding action to the list of available categories for the Juniper Local Web Filtering profile. Delete(X)—Deletes the selected category from the list of available categories for the Juniper Local Web Filtering profile. Select a category from the list.
Name	Specifies the name of the device that you take for the category selected.
Action	Specifies the action that the device must take for the category selected.
Custom Message	Specifies the custom message.
Quarantine Message
Type	Specify type of quarantine message desired. Select a type.
URL	URL of quarantine message. Enter a valid URL.
Websense Redirect
Global
Account	Displays the user account for which this profile is intended.
Custom Block Message	Specify the websense redirect custom block message sent to HTTP Client. Enter a message to be displayed when content is blocked.
Quarantine Custom Message	Juniper local quarantine custom message. Enter the quarantine custom message.
Sockets	Displays the number of sockets used for communicating between the client and server.
Timeout	Juniper local timeout. Select a timeout interval from 1 to 1800 seconds.
Block Messages
Type	Select the type of block message.
URL	Select the URL of the block message.
Fallback Settings
Default	Specifies all errors other than the categorized settings. These could include either unhandled system exceptions (internal errors) or other unknown errors. The available actions are block or log-and-permit. Select Log and Permit. The default action is Log and Permit.
Server-connectivity	Specifies that the server connection is not established during certain processes, for example, while the signature database is loading. The available actions are block or log-and-permit. Select Log and Permit. The default action is Log and Permit.
Timeout	Specifies that if the time taken to scan exceeds the timeout setting in the Web filtering profile, the processing is aborted and the content is passed or blocked without completing filtering. Select Log and Permit. The default action is Log and Permit.
Too-many-requests	Specifies that if the total number of messages received concurrently exceeds the device limits, the content is passed or blocked depending on the too-many-request fallback option. The available actions are block or log-and-permit. Select Log and Permit. The default action is Log and Permit.
Category	Specifies a unique customized list of categories. Add (+)—Adds the selected category and the corresponding action to the list of available categories for the Juniper Local Web Ffiltering profile. Edit (+)—Edits the selected category and the corresponding action to the list of available categories for the Juniper Local Web Filtering profile. Delete(X)—Deletes the selected category from the list of available categories for the Juniper Local Web Filtering profile. Select a category from the list.
Name	Specifies the name of the device that you take for the category selected. Select a category from the list.
Action	Specifies the action that the device must take for the category selected. Select Permit, Log and Permit, or Block.
Custom Message	Specifies the custom message. Enter the custom message.
Quarantine Message
Type	Enter the type of quarantine message desired.
URL	Enter a valid URL.
Server
Host	Enter the address of the host server.
Port	Enter the port number of the server.
Routing Instance	Select a routing instance.

Add a Web Filtering

Procedure

Procedure

Related Documentation

Help us to improve. Rate this article.