URL Filtering

Concept Overview

URL Filtering is a security feature that monitors and restricts user access to specific websites. This feature operates only when SSL Inspection is enabled, as it requires decrypted HTTPS traffic to inspect URLs effectively.
Administrators can define rules for blocking particular web pages, which are stored as URLREGEX entries. With SSL Inspection active, presenting a custom block page to users when they attempt to access restricted sites.
Advanced URL filtering requires blocking HTTP/3 traffic so that encrypted requests can be inspected. When HTTP/3 is blocked, traffic is downgraded to HTTP/2 or HTTP/1.1, allowing the security engine to enforce URL filtering policies.
This mechanism provides controlled web access, enhances network security.

URL Filtering Workflow

User Request: A client device attempts to access a website via HTTP or HTTPS.For HTTP traffic, the request is sent in pld content.To enable URL filtering for HTTPS traffic, SSL interception is required. This involves decrypting the encrypted request at a secure proxy. The client device must have the trusted certificate pushed into it.
SSL Inspection: The request passes through the appliance with SSL Inspection enabled.The appliance intercepts and decrypts HTTPS traffic using a trusted certificate.

ssl_inspection_on

NOTE:

The process for pushing or installing this certificate on client devices is detailed in SSLInspection/Certification_push.md.

For advanced URL filtering, "Strict mode for URL Filtering (Blocks HTTP/3)" must be enabled from Security → Firewall → Advanced. This ensures that traffic using HTTP/3 is downgraded to HTTP/2 or HTTP/1.1, allowing the zGuardian UTM module to inspect and enforce URL filtering policies.

Strict_Url_ON

URL Filtering ON & OFF: To access the URL Filtering page, enable the SSL Inspection. If SSL is off, unable to access the URL Filtering.

Url_filter_Off

Url_filter_ON

Add Url: Admin can add the specific url to block the particular page through Add Url button in top right corner.

Add_url

Activate Changes: It's mandatory to give activate changes whenever the url is added.

activate_changes

activate_changes1

URL Filtering Check: The URL is compared against the URL Filtering rules defined by administrators. Rules are stored as URLREGEX entries that match URLs to be blocked.
Decision Blocked: If the URL matches a block entry, then the request is intercepted and blocked by returning a custom block page to the user, informing them the site is restricted.

url_error_page

Feature

Search option is supported in URL Filtering

zWAN as a Solution

zTC as a Solution

Secure Endpoint Solutions

Zero Trust Network

Network Infrastructure

Network Storage

URL Filtering

SnapOS

SnapOS

Getting Started

Session Connections

Peripheral & Application Management

Security & Certificates

System Administration & Updates

Diagnostics & Recovery

Support & Resources

zMAN

Overview & Architecture

Installation & Setup

Onboarding

Analytics & Monitoring

Device Management & Dashboard

Firmware & Repository Management

Profiles & Settings Management

Support & Resources

zDM Integration & Provisioning

Solutions

Voice-Over-IP/Video Conferencing

Validation and Test Cases

Proof of Concept Test Cases

zTC

Diagnostics & Recovery

Getting Started

Peripheral & Application Management

Security & Certificates

Session Connections

Support & Resources

System Administration & Updates

zWAN

Deployment

Getting Started

Introduction

Configuration

Installation Guides

POC Evaluation

Director

Device Management

Edge Controllers

Analytics

System

Backup and Restore

Network

Analytics

Reporting

Alerting

User Management

Edge Controllers

z25

Troubleshooting

z40

Device Management

z50

Troubleshooting

Frequently Asked Questions

zAccess

Endpoint Sessions

Event Logs

Gateway Devices

Network Configuration

Policy Configuration

StorTrends

Best Practice Guides

Configuration Guides

URL Filtering

Concept Overview

URL Filtering Workflow

Feature

Products

Network Infrastruture

Cyber Security