3.8 How To Block HTTPS Websites Using Content Filtering
and SSL Inspection
This is an example of using a ZyWALL/USG Content Filtering, SSL Inspection and Security Policy to
block access to malicious or not business-related websites.
Figure 167 ZyWALL/USG with Block HTTPS Websites Using Content Filtering and SSL Inspection
Settings Example
Note: All network IP addresses and subnet masks are used as examples in this article.
Please replace them with your actual network IP addresses and subnet masks. This
example was tested using USG310 (Firmware Version: ZLD 4.13).
3.8.1 Set Up the Content Filter on the ZyWALL/USG
In the ZyWALL/USG, go to CONFIGURATION > UTM Profile> Content Filter > Profile
1
Management > Add Filter File > Category Service. Configure a Name for you to identify the
Content Filter Profile and select Enable Custom Service.
Figure 168 CONFIGURATION > UTM Profile> Content Filter > Profile > Profile Management > Add
Filter File > Custom Service > General Settings
Scroll down to the Security Threat (unsafe) section and select all categories of web pages that
2
are known to pose a threat to your computers.
Figure 169 CONFIGURATION > UTM Profile> Content Filter > Profile > Profile Management > Add
Filter File > Category Service > Security Threat (unsafe)
Chapter 3 Protect Your Network with UTM
ZyWALL/USG Series User's Guide
84