Configuring Web Filtering; Url Address Filtering; Ip Address-Supported Url Address Filtering - HP A6600 Configuration Manual
Hide thumbs
Also See for A6600:
- Configuration manual (426 pages) ,
- Getting started (222 pages) ,
- Limited warranty (41 pages)
Table of Contents
Advertisement
Configuring web filtering
In legacy network security solutions, network protection is mainly against external attacks. With the
popularity of network applications in every walk of life, however, the internal network also faces security
threats caused by internal users' access to illegal networks. To protect the internal network against such
threats, the network devices must be able to filter illegal access requests from internal users. This is
where the web filtering feature comes in.
The web filtering feature can help network devices prevent internal users from accessing unauthorized
websites and block Java applets and ActiveX objects from webpages. It provides these functions:
URL address filtering
•
IP address-supported URL address filtering
•
URL parameter filtering
•
Java blocking
•
ActiveX blocking
•
URL address filtering
URL address filtering can help prevent internal users from accessing prohibited websites or restrict them
to specific websites by checking the URL addresses contained in the web requests.
Processing procedure
After receiving a web request, the router resolves the URL address in the request.
1.
The router matches the URL address against the configured filtering entries.
2.
If a match is found and the filtering action of the matched entry is permit, the router forwards the
3.
request.
If a match is found and the filtering action of the matched entry is deny, the router drops the web
4.
request and sends a TCP reset packet to both the client that sent the request and the server.
If no match is found, the router forwards or drops the request, depending on the default filtering
5.
action configured for URL address filtering.
IP address-supported URL address filtering
After the URL address filtering function is enabled, the system denies all web requests that use IP
addresses by default. By enabling support for IP address in URL address filtering, configure the router to
allow internal users to access the specified or all websites by using the websites' IP addresses.
Processing procedure
After the router receives a web request that uses an IP address, it processes the request as follows:
If URL address filtering supports IP addresses, the router forwards the request. The router permits all
•
web requests that use the websites' IP addresses to pass.
If URL address filtering does not support IP addresses, the router checks the ACL rules for URL
•
address filtering. If the ACL permits the IP address, the router forwards the request. Otherwise, the
router drops the request.
374
Advertisement
Table of Contents
Troubleshooting
