Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 

Add a Web Filtering

 

You are here: Configure > Security Services > UTM > Default Configuration.

To add a web filtering:

  1. Select the Web Filtering tab to view or create the web filtering configuration.

    The Create Web Filtering page appears.

  2. Complete the configuration according to the guidelines provided in Table 1.
  3. Click OK to save the changes. If you want to discard your changes, click Cancel.

Table 1: Fields on the Create Web Filtering Page

Field

Action

HTTP persist

Configure the web-filtering engine type.

Click the check box to enable this option.

HTTP Reassemble

Specifies a unique customized list of all URLs or IP addresses for a given category that are to be bypassed for scanning.

Click the check box to enable this option to reassemble HTTP request segments.

Type

Specifies a unique customized list of all URLs or IP addresses for a given category that are scanned for blacklisting.

Select from the list:

  • Juniper Enhanced

  • Juniper Local

  • Websense Redirect

URL Blacklist

Specifies a unique customized list of all URLs or IP addresses for a given category that are to be bypassed for scanning.

Select an option from the list.

URL Whitelist

Specifies a unique customized list of all URLs or IP addresses for a given category that are scanned for blacklisting.

Select an option from the list.

Juniper Enhanced Options

Specifies that the Juniper Enhanced Web filtering intercepts the HTTP and the HTTPS requests and sends the HTTP URL or the HTTPS source IP to the Websense ThreatSeeker Cloud (TSC).

Global

Base Filter

Select the base filter from the list.

Custom Block Message

Enter the juniper enhanced custom block message sent to HTTP Client.

Default Action

Juniper enhanced profile default.

Select an option from the list. The default action is Log and Permit.

No Safe Search

Specifies not to perform safe-search for Juniper enhanced protocol.

Select the check box to enable this option to choose this type of search.

Note: Do not perform safe-search for Juniper enhanced protocol

Quarantine Custom Message

Enter the quarantine custom message.

Timeout

Select a timeout interval from 1 to 1800 seconds.

Cache

Size

Specify Juniper enhanced cache size

Select a cache size from 0 to 4096 Killobytes.

Time out

Specify Juniper enhanced cache time out.

Select a timeout interval from 1 to 1800 seconds.

Block Messages

Type

Select the type of block message from the list.

URL

Enter URL of the block messages.

Fallback Settings

Default

Specifies all errors other than the categorized settings. These could include either unhandled system exceptions (internal errors) or other unknown errors. The available actions are block or log-and-permit.

Select an option from the list. The default action is Log and Permit.

Server-connectivity

Specifies that the server connection is not established during certain processes, for example, while the signature database is loading. The available actions are block or log-and-permit.

Select an option from the list. The default action is Log and Permit.

Timeout

Specifies that if the time taken to scan exceeds the timeout setting in the Web filtering profile, the processing is aborted and the content is passed or blocked without completing filtering.

Select an option from the list. The default action is Log and Permit.

Too-many-requests

Specifies that if the total number of messages received concurrently exceeds the device limits, the content is passed or blocked depending on the too-many-request fallback option. The available actions are block or log-and-permit.

Select an option from the list. The default action is Log and Permit.

Category

Specifies a unique customized list of categories.

  • Add (+)—Adds the selected category and the corresponding action to the list of available categories for the Juniper Enhanced Web Ffiltering profile.

  • Delete(X)—Deletes the selected category from the list of available categories for the Juniper Enhanced Web Filtering profile.

Select a category from the list.

Action

Specifies the action that the device must take for the category selected.

Select Permit, Log and Permit, or Block.

Quarantine Message

Type

Select a type of quarantine message desired.

URL

URL of quarantine message.

Enter a valid URL.

Server

Host

Enter the address of the host server.

Port

Enter the port number of the server.

Routing Instance

Select a routing instance.

Proxy Profile

Create a Proxy profile.

To create a proxy profile:

  1. Click Create Profile.
  2. Enter the following details:
    • Profile Name - Enter a valid profile name.

    • Connection Type - Select any one option from the following:

      • Server IP—Enter the server IP address

      • Host Name—Enter the host name.

    • Port Number-Enter the port number in the range 0 through 65535. Default port number is 80.

  3. Click OK to save the changes. If you want to discard your changes, click Cancel.

Site Reputation Action

Specify the action to be taken depending on the site reputation returned for all types of URLs whether it is categorized or uncategorized.

Displays the following options:

  • Very Safe– Permit, log-and-permit, block, or quarantine a request if a site-reputation of 90 through 100 is returned.

  • Moderately Safe– Permit, log-and-permit, block, or quarantine a request if a site-reputation of 80 through 89 is returned.

  • Fairly Safe– Permit, log-and-permit, block, or quarantine a request if a site-reputation of 70 through 79 is returned.

  • Suspicious– Permit, log-and-permit, block, or quarantine a request if a site-reputation of 60 through 69 is returned.

  • Harmful– Permit, log-and-permit, block, or quarantine a request if a site-reputation of zero through 59 is returned.

Click Reset to position the slider to the recommended levels.

Juniper Local

Select this option to use the Local profile type.

Global

Custom Block Message

Specify the juniper local custom block message sent to HTTP Client.

Enter a message to be displayed when content is blocked.

Default Action

Juniper local profile default.

Select Log and Permit. The default action is Log and Permit.

Quarantine Custom Message

Enter the Juniper local quarantine custom message.

Timeout

Juniper local timeout.

Select a timeout interval from 1 to 1800 seconds.

Block Messages

Type

Select the type of block message.

URL

Enter URL of the block messages.

Fallback Settings

Default

Specifies all errors other than the categorized settings. These could include either unhandled system exceptions (internal errors) or other unknown errors. The available actions are block or log-and-permit.

Select Log and Permit. The default action is Log and Permit.

Server-connectivity

Specifies that the server connection is not established during certain processes, for example, while the signature database is loading. The available actions are block or log-and-permit.

Select Log and Permit. The default action is Log and Permit.

Timeout

Specifies that if the time taken to scan exceeds the timeout setting in the Web filtering profile, the processing is aborted and the content is passed or blocked without completing filtering.

Select Log and Permit. The default action is Log and Permit.

Too-many-requests

Specifies that if the total number of messages received concurrently exceeds the device limits, the content is passed or blocked depending on the too-many-request fallback option. The available actions are block or log-and-permit.

Select Log and Permit. The default action is Log and Permit.

Category

Specifies a unique customized list of categories.

  • Add (+)—Adds the selected category and the corresponding action to the list of available categories for the Juniper Local Web Filtering profile.

  • Edit (+)—Edits the selected category and the corresponding action to the list of available categories for the Juniper Local Web Filtering profile.

  • Delete(X)—Deletes the selected category from the list of available categories for the Juniper Local Web Filtering profile.

Select a category from the list.

Name

Specifies the name of the device that you take for the category selected.

Action

Specifies the action that the device must take for the category selected.

Custom Message

Specifies the custom message.

Quarantine Message

Type

Specify type of quarantine message desired.

Select a type.

URL

URL of quarantine message.

Enter a valid URL.

Websense Redirect
Global

Account

Displays the user account for which this profile is intended.

Custom Block Message

Specify the websense redirect custom block message sent to HTTP Client.

Enter a message to be displayed when content is blocked.

Quarantine Custom Message

Juniper local quarantine custom message.

Enter the quarantine custom message.

Sockets

Displays the number of sockets used for communicating between the client and server.

Timeout

Juniper local timeout.

Select a timeout interval from 1 to 1800 seconds.

Block Messages

Type

Select the type of block message.

URL

Select the URL of the block message.

Fallback Settings

Default

Specifies all errors other than the categorized settings. These could include either unhandled system exceptions (internal errors) or other unknown errors. The available actions are block or log-and-permit.

Select Log and Permit. The default action is Log and Permit.

Server-connectivity

Specifies that the server connection is not established during certain processes, for example, while the signature database is loading. The available actions are block or log-and-permit.

Select Log and Permit. The default action is Log and Permit.

Timeout

Specifies that if the time taken to scan exceeds the timeout setting in the Web filtering profile, the processing is aborted and the content is passed or blocked without completing filtering.

Select Log and Permit. The default action is Log and Permit.

Too-many-requests

Specifies that if the total number of messages received concurrently exceeds the device limits, the content is passed or blocked depending on the too-many-request fallback option. The available actions are block or log-and-permit.

Select Log and Permit. The default action is Log and Permit.

Category

Specifies a unique customized list of categories.

  • Add (+)—Adds the selected category and the corresponding action to the list of available categories for the Juniper Local Web Ffiltering profile.

  • Edit (+)—Edits the selected category and the corresponding action to the list of available categories for the Juniper Local Web Filtering profile.

  • Delete(X)—Deletes the selected category from the list of available categories for the Juniper Local Web Filtering profile.

Select a category from the list.

Name

Specifies the name of the device that you take for the category selected.

Select a category from the list.

Action

Specifies the action that the device must take for the category selected.

Select Permit, Log and Permit, or Block.

Custom Message

Specifies the custom message.

Enter the custom message.

Quarantine Message

Type

Enter the type of quarantine message desired.

URL

Enter a valid URL.

Server

Host

Enter the address of the host server.

Port

Enter the port number of the server.

Routing Instance

Select a routing instance.