Help Center User GuideGetting Started
 
X
User Guide
Getting Started
Contents  

Add a Web Filtering Profile

You are here: Configure > Security Services > UTM > Web Filtering.

Before You Begin

Procedure

To create a new web filtering profile:

  1. Click the add icon (+) available on the upper right side of the Web Filtering Profiles page.

    The Create Web Filtering Profiles page appears.

  2. Complete the configuration according to the guidelines provided in Table 233 through Table 235.
  3. Click Finish to save the changes or click Back to go to the previous tab. If you want to discard your changes, click Cancel.

    If you click Finish, a new web filtering profile is created.

Table 233: Fields on the General tab

Field

Action

Name

Enter a name for the Web filtering profile.

The maximum length is 29 characters.

Timeout

Enter a timeout value to wait for a response from the Websense server.

The maximum value is 1800 seconds. Default value is 15 seconds.

Engine type

Select an engine type for Web filtering:

The available options are

  • Juniper Enhanced—Specifies that the Juniper Enhanced Web filtering intercepts the HTTP and the HTTPS requests and sends the HTTP URL or the HTTPS source IP to the Websense ThreatSeeker Cloud (TSC).

  • Websense Redirect—Specifies that the Web filtering module intercepts an HTTP request. The URL in the request is then sent to the external Websense server which makes a permit or a deny decision.

  • Local—Specifies that the Web filtering module intercepts URLs and makes a permit or deny decision locally.

Note: The default value is Juniper Enhanced.

Safe search

Enable a safe search solution to ensure that the embedded objects such as images on the URLs received from the search engines are safe and that no undesirable content is returned to the client.

Note: This option is available only for the Juniper Enhanced engine type. By default, this option is enabled.

Account

Enter the user account associated with the Websense Web filtering profile.

Note: This option is available only for the Websense Redirect engine type.

Server

Enter the hostname or IP address for the Websense server.

Note: This option is available only for the Websense Redirect engine type.

Port

Enter the port number for communicating with the Websense server.

The default port is 15868.

Note: This option is available only for the Websense Redirect engine type.

Sockets

Enter the number of sockets used for communication between the client and the server.

The default value is 8.

Note: This option is available only for the Websense Redirect engine type.

Custom Block Message/URL

Specify the redirect URL or a custom message to be sent when HTTP requests are blocked.

Maximum length is 512 characters.

Custom Quarantine Message

Define a custom message to allow or deny access to a blocked site based on a users response to the message.

Maximum length is 512 characters.

Note: This option is available only for the Juniper Enhanced and the Local engine types.

Base Filter

Select a predefined base filter, which has default actions for all categories, for Web filtering.

Click Clear All to discard the changes.

Note: This option is available only for the Juniper Enhanced engine type.

Table 234: Fields on the URL Categories Tab

Field

Action

Apply actions

Procedure

To apply actions that the device must take for the selected category:

  1. Click Apply Actions.

    The Apply Actions page appears.

  2. Enter the following details:
    • Action—Select an action for the URL category from the list. The options are Permit, Log and Permit, Block or Quarantine.

    • Custom Message—Select a custom message for the URL category.

      Note:

      • This option is applicable only when the action is Block or Quarantine.

      • Click Clear all to clear the custom message.

      To add a custom message list inline:

      1. Click Create New.

      2. Enter the following details:

        • Name—Enter a unique name for the custom message list.

          Special characters such as hypen, underscore, !, @, $, *, + are allowed. The maximum length is 29 characters.

        • Type—Select an option from the list. The options are Redirect URL or User Message.

        • Content—Enter a content for the custom message list. The maximum length is 512 characters.

      3. Click OK to add a new custom message list. Else, click Cancel.

  3. Click OK to apply actions for the category. Else, click Cancel.

Create

Procedure

To add a new URL category:

  1. Click +.

    The Select URL Categories page appears.

  2. Select one or more predefined and custom URL categories to apply to the list.

    The Name column displays the list of URL categories to choose from.

    Click the search icon in the top right corner of the table to search for any particular URL category in the list.

  3. Enter the following details:
    • Action—Select an action for the URL category from the list. The options available are Permit, Log and Permit, Block, and Quarantine.

      Note: The default action is Log and Permit.

    • Custom Message—Select a custom message for the URL category.

      Note:

      • This option is applicable only when the action is Block or Quarantine.

      • Click Clear all to clear the custom message.

      • Click Create New to add a custom message list inline.

  4. Click OK to save the changes. If you want to discard your changes, click Cancel.

Delete

Select a URL category that you want to delete and click the delete icon in the top right corner of the table

Search

Click the search icon in the top right corner of the table and the URL category you want to search.

Category name

Displays the URL category names.

Select one or more categories from the list.

Action

Displays the action taken for the URL category.

Custom message

Displays the respective custom messages for the URL categories.

Table 235: Fields on the Fallback Options Tab

Field

Action

Global Reputation Actions

Select to choose the action you want to take for each reputation level.

URLs can be processed using their reputation score if there is no category available.

Very Safe

Select an option from the list for the device must take appropriate action if the site reputation reaches the % score that is defined by you.

Note: If you have not defined the percentage, the default score is 90 through 100.

The options are Permit, Log and Permit, Block, and Quarantine.

Moderately Safe

Select an option from the list for the device must take appropriate action if the site reputation reaches the % score that is defined by you.

Note: If you have not defined the percentage, the default score is 80 through 89.

The options are Permit, Log and Permit, Block, and Quarantine.

Fairly Safe

Select an option from the list for the device must take appropriate action if the site reputation reaches the % score that is defined by you.

Note: If you have not defined the percentage, the default score is 70 through 79.

The options are Permit, Log and Permit, Block, and Quarantine.

Suspicious

Select an option from the list for the device must take appropriate action if the site reputation reaches the % score that is defined by you.

Note: If you have not defined the percentage, the default score is 60 through 69.

The options are Permit, Log and Permit, Block, and Quarantine.

Harmful

Select an option from the list for the device must take appropriate action if the site reputation reaches the % score that is defined by you.

Note: If you have not defined the percentage, the default score is 50 through 59.

The options are Permit, Log and Permit, Block, and Quarantine.

Default Action

Select an option from the list for the actions to be taken for URL categories with no assigned action and for uncategorized URLs.

The options are Permit, Log and Permit, Block, and Quarantine.

Fallback Action

Select an option from the list. The options are Log and Permit and Block.

Use this option when the ThreatSeeker Websense Cloud servers are unreachable. A timeout occurs for requests to ThreatSeeker Cloud.

Related Documentation

Ask questions in TechWiki

Check documentation in TechLibrary

Rating by you:      
X

Additional Comments

800 characters remaining

May we contact you if necessary?

Name:
Email:

Need product assistance? Contact Juniper Support

Submit