Http Alg Processing Order - D-Link NetDefend DFL-210 User Manual
Network security firewall ver 2.26.01
Hide thumbs
Also See for NetDefend DFL-210:
- Log reference manual (476 pages) ,
- User manual (469 pages) ,
- Cli reference manual (213 pages)
Table of Contents
Advertisement
6.2.2. The HTTP ALG
•
Download File Size Limit - A file size limit can additionally be specified for any single
download (this option is available only for HTTP and SMTP ALG downloads).
The Ordering for HTTP Filtering
HTTP filtering obeys the following processing order and is similar to the order followed by the
SMTP ALG:
1.
Whitelist.
2.
Blacklist.
3.
Web content filtering (if enabled).
4.
Anti-virus scanning (if enabled).
As described above, if a URL is found on the whitelist then it will not be blocked if it also found on
the blacklist. If it is enabled, Anti-virus scanning is always applied, even though a URL is
whitelisted. If it is enabled, Web content filtering is still applied to whitelisted URLs but if instead
of blocking, flagged URLs are only logged. If it is enabled, Anti-virus scanning is always applied,
even though a URL is whitelisted.
Figure 6.2. HTTP ALG Processing Order
Using Wildcards in White and Blacklists
Entries made in the white and blacklists can make use of wildcarding to have a single entry be
equivalent to a large number of possible URLs. The wildcard character "*" can be used to represent
any sequence of characters.
Note: Similarities with other NetDefendOS features
The Verify MIME type and Allow/Block Selected Types options work in the
same way for the FTP, POP3 and SMTP ALGs.
210
Chapter 6. Security Mechanisms
Advertisement
Table of Contents
Troubleshooting
