Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search instead for
Did you mean:
How to configure URL filtering in the PIX Firewall
What is URL filtering?
Suppose you type the name of your favorite social networking site on the web browser and it displays a message like “The policy of this organization doesn’t allow you to browse that website” and does not let you access the site from office, there is a URL filter that has been put in place by your IT department. So, a URL filter is used to basically categorize the websites on the internet and either allow/block the access to them to the web users of the organization either by referring to an already categorized central database (maintained by URL filtering vendors) or by classifying the websites in real time. URL filtering can also be made applicable only during certain times of a day or days of a week, if required.
Why is URL Filtering required?
URL filtering is required to stop the users of an organization from accessing those websites during working hours that:
Drains their productivity
Lets them view objectionable content from work place
Is bandwidth intensive and hence creates a strain on resources
Apply filtering in order to connection requests that originate from a more secure network to a less secure network. Although you can use ACLs in order to prevent outbound access to specific content servers, to manage usage this way is difficult because of the size and dynamic nature of the Internet. Use a separate server in order to simplify configuration and improve security appliance performance.
You can use any one of these Internet filtering products as a URL Filtering Server:
Websense Enterprise for filtering HTTP, HTTPS, and FTP
Sentian by N2H2 for filtering HTTP only. Although some versions of Sentian support HTTPS, the security appliance only supports filtering HTTP with Sentian.
Complete these steps in order to filter URLs:
Designate the URL filtering application server with the appropriate form of the vendor-specific url-server command.