This article describes how to configure firewall rule to block traffic for shopping category
Prerequisites
- Versa headend is installed and functional.
- Make sure NGFW (Next Generation Firewall ) services have enabled on the Versa FlexVNF CPE
- To add NGFW service on Versa FlexVNF click here
Configuration
- Login into the Versa Director and navigate to the Configuration >Templates
- Edit the Template associated with the Versa FlexVNF by clicking it
- On the Versa FlexVNF CPE template navigate to Configuration > Services > Next Gen Firewall > Security > Profiles > click on URL Filtering
- Click + to create new URL filtering profile
- Edit URL Filter will pop-up. Fill in the details:
- Provide a Name to the Profile
- Click on Category Based Action
- Click + to create Category Based Action
- Add Category Based Action will pop up fill in the details
- Provide name of the action
- Select Action as block
- In the section Predefined Categories click on + and select the shopping category in the Predefined Category list as shown in below image
- Click ok
- And Click ok
- Navigate to Security > Policies and click on + to add new Policy (if default-policy is not present)
- Click on Rules
- Click on + to add a rule
- Pop-up window is opened to Add Rule
- In the Add Rule window in the General tab provide the name for the rule (i.e Block_Shopping_Sites)
- Then click on Enforce tab. Rest of the tabs (Source/Destination, Headers/Schedule, Applications/URL, users/Groups are not required to be edited in this use case)
- In the Actions section select Apply Security Profile
- Select URL Filtering option and select from Drop-Down the URL Filtering Profile that we created earlier in this article.
- Click OK to complete the configuration.
- Since we have done the configuration in Template mode, commit the template to the branch/branches where you want to apply this rule.
Validation
The user will not be allowed to access the Facebook URL and Error is displayed on browser
