Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Blocking all but a few sites through a Policy

Does anyone have any experience blocking all but a few websites through the S series? I have setup a policy that blocks all categories then put in a Custom URL "whitelist" for the few sites the users can access. When I test it, the Category block is overriding the whitelist instead of the other way around. Ideas?

New Member

Re: Blocking all but a few sites through a Policy

Are you sure that the standard categories are overriding? It's more likely that the WBRS engine is allowing the content since it takes precedence of the standard categories.

Custom category allows have highest preference and will override everything.

Make sure that you disable WBRS in your rules that you wish to us whitelisting on.

If that still doesn't do the trick, let's take a look at the access logs to determine what action is triggering and why.

To grep the access logs for this entry, run the following from the CLI:
1. Grep
2. Enter the number of the log you wish to grep: 1 (for accesslogs)
3. Enter the regular expression to grep: .*
4. Do you want this search to be case insensitive?: Y
5. Do you want to paginate the output?: N