1. Home
    2. /
  2. Manuals
    3. /
  3. ZoneAlarm
    4. /
  4. Z100G
    5. /
  5. 41
Page 201 / 428 Scroll up to view Page 196 - 200
Using Web Rules
Chapter 10: Setting Your Security Policy
187
In this
column…
Do this…
Host IP
Type the IP address of the computer that will run the service (one of your
network computers), or click the corresponding
This Computer
button
to
allow your computer to host the service.
VPN Only
Select this option to allow only connections made through a VPN.
To stop the forwarding of services to a specific host
1.
Click
Security
in the main menu, and click the
Servers
tab.
The
Servers
page appears.
2.
In the desired server's row, click
Clear
.
The
Host IP
field is cleared.
3.
Click
Apply
.
Using Web Rules
You can block or allow access to specific Web pages, by defining Web rules. If a user
attempts to access a blocked page, the
Access Denied
page appears. For information on
customizing this page, see
Customizing the Access Denied Page
on page 195.
If desired, you can permit specific users to override Web rules. Such users will be able to
view Web pages without restriction, after they have provided their username password via
the
Access Denied
page. For information on granting Web Filtering override permissions,
see
Adding and Editing Users
on page 313.
In addition, you can choose to exclude specific network objects from Web rule
enforcement. Users connecting from these network objects will be able to view Web pages
without restriction, regardless of whether they have Web Filtering override permissions.
For information on configuring network objects, see
Using Network Objects
on page 95.
Note:
Web rules affect outgoing traffic only and cannot be used to allow or limit
access from the Internet to internal Web servers.
Page 202 / 428
Using Web Rules
188
Check Point ZoneAlarm User Guide
Note:
Web rules differ from the Web Filtering subscription service in the following
ways:
The Web Filtering service is subscription-based and requires a
connection to the Service Center, while Web rules are included with the
ZoneAlarm router.
The Web Filtering service is centralized, extracting URLs from HTTP
requests and sending the URLs to the Service Center to determine
whether they should be blocked or allowed. With Web rules, HTTP
requests are analyzed in the gateway itself.
The Web Filtering service is category based; that is, it filters Web sites
based on the category to which they belong. In contrast, Web rules
allow and block specific URLs.
You can use either content filtering solution or both in conjunction. When a user
attempts to access a Web site, the ZoneAlarm router first evaluates the Web rules.
If the site is not blocked by the Web rules, the Web Filtering service is then
consulted. For information on the Web Filtering service, see
Web Filtering
on page
276.
The ZoneAlarm router processes Web rules in the order they appear in the
Web Rules
table,
so that rule 1 is applied before rule 2, and so on. This enables you to define exceptions to
rules, by placing the exceptions higher up in the
Web Rules
table.
Page 203 / 428
Using Web Rules
Chapter 10: Setting Your Security Policy
189
For example, if you want to block all the pages of a particular Web site, except a specific
page, you can create a rule blocking access to all of the Web site's pages and move the rule
down in the
Web Rules
table. Then create a rule allowing access to the desired page and
move this rule to a higher location in the
Web Rules
table than the first rule. In the figure
below, the general rule is rule number 2, and the exception is rule number 1.
The ZoneAlarm router will process rule 1 first, allowing access to the desired page, and
only then it will process rule 2, blocking access to the rest of the site.
The following rule types exist:
Table 35: Web Rule Types
Rule
Description
Allow
This rule type enables you to specify that a specific Web page should be
allowed.
Block
This rule type enables you to specify that a specific Web page should be
blocked.
Page 204 / 428
Using Web Rules
190
Check Point ZoneAlarm User Guide
Adding and Editing Web Rules
To add or edit a Web rule
1.
Click
Security
in the main menu, and click the
Web Rules
tab.
The
Web Rules
page appears.
2.
Do one of the following:
To add a new rule, click
Add Rule
.
To edit an existing rule, click the Edit icon next to the desired rule.
Page 205 / 428
Using Web Rules
Chapter 10: Setting Your Security Policy
191
The
ZoneAlarm Web Rule Wizard
opens, with the
Step 1: Rule Type
dialog box
displayed.
3.
Select the type of rule you want to create.
4.
Click
Next
.
The
Step 2: Rule Location
dialog box appears.
The example below shows a Block rule.

Rate

3.5 / 5 based on 2 votes.

Popular ZoneAlarm Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top