This article describes how to configure firewall rule using URL Filtering to block certain websites (criminal/pornography)
Prerequisites
- Versa Director installed and configured.
- NGFW (Next Generation Firewall ) services should be enabled on the Versa FlexVNF CPE
- To add NGFW service on Versa FlexVNF click here
Configuration
- Login into the Versa Director and navigate to the Configuration >Templates
- Edit the Template associated with the Versa FlexVNF CPE by clicking on it
- On the branch template navigate to Configuration > Services > Next Gen Firewall > Security > Profiles > click on URL Filtering
- Click on + to create new URL filtering profile
- Edit URL Filter window will pop-up
- Provide a Name to the Profile
- Click on Category Based Action
- Click + to create Category Based Action
- Add Category Based Action will pop up fill in the details
- Provide a name to the action
- Select Action as block
- In the section Predefined Categories click on + and select the list of pornography and criminal site categories in the Predefined Category list as shown in below image
- Click ok
- And Click ok
- Navigate to Security > Policies and click on + to add new Policy (if default-policy is not present)
- Click on Rules
- Click on + to add a new rule
- Pop-up window is opened to Add Rule
- In the Add Rule window in the General tab provide the name for the rule
- Then click on Enforce tab. Rest of the tabs (Source/Destination, Headers/Schedule, Applications/URL, users/Groups are not required to be edited in this use case)
- In the Actions section select Apply Security Profile
- Select URL Filtering option and select from Drop-Down the URL Filtering Profile which we created earlier in this article.
- Click OK to complete the configuration.
- Since we have done the configuration in Template mode, commit the template to the branch/branches where you want to apply this rule.