SonicWall firewalls use content filtering to block or allow websites for end users. The content filtering service (CFS) is a licensed feature on the firewall which allows administrators to quickly block websites based on categories. Instead of individually blocking 100's of websites an administrator can simply block "Hacking and Malware" which will block 1000's of websites. These categories are updated on a daily basis as websites are identified. For SonicWall firewalls that do not have licensed CFS, administrators can setup basic CFS features that can block websites for end users by blocking one domain at a time. This article describes how to setup CFS when it is unlicensed.
To configure CFS while it's unlicensed perform the following:
Confirm that CFS is enabled on the LAN zone by navigating to Network | Zones:
Navigate to Security Services | Content Filer. Click Configure under Content Filter Type:
Under the CFS tab check Enable HTTPS Content Filtering.
Under the Custom List tab enter the appropriate websites that need to be blocked. Click OK when all domains are added.
When users on the LAN zone attempt to navigate to these blocked domains they will be prevented by a SonicWall block message:
Firewalls>SonicWall SuperMassive 9000 Series>Content Filtering Service
Firewalls>SonicWall NSA Series>Content Filtering Service