-
Products
-
SonicPlatform
SonicPlatform is the cybersecurity platform purpose-built for MSPs, making managing complex security environments among multiple tenants easy and streamlined.
Discover More
-
-
Solutions
-
Federal
Protect Federal Agencies and Networks with scalable, purpose-built cybersecurity solutions
Learn MoreFederalProtect Federal Agencies and Networks with scalable, purpose-built cybersecurity solutions
Learn More - Industries
- Use Cases
-
-
Partners
-
Partner Portal
Access to deal registration, MDF, sales and marketing tools, training and more
Learn MorePartner PortalAccess to deal registration, MDF, sales and marketing tools, training and more
Learn More - SonicWall Partners
- Partner Resources
-
-
Support
-
Support Portal
Find answers to your questions by searching across our knowledge base, community, technical documentation and video tutorials
Learn MoreSupport PortalFind answers to your questions by searching across our knowledge base, community, technical documentation and video tutorials
Learn More - Support
- Resources
- Capture Labs
-
- Company
- Contact Us
How to restrict the web access based on a passphrase action in CFS 4.0
03/26/2020 
1,407 People found this article helpful
487,576 Views
Description
CFS 4.0 in SonicOS 6.2 introduces a new restrict action, which named Passphrase, to restrict the web access other than just block. Once Passphrase action has been selected, the web will be redirected to a passphrase page after user attempts to access the specified website. In this page users should submit the preset password to continue the web browsing.
If the password is correct, the web access will be allowed. Otherwise it will be blocked with a block page sending to client.If the user didn't enter a correct password the first time, then the passphrase page will be sent to client again for requiring password the second time. Currently, client users have 3 opportunities to enter their passwords, this means the site will be blocked if user tries his password 3 times and the passwords are all wrong.
If client users don't know the password, they can click 'Cancel' button to skip entering the password. In this case, this site will be blocked immediately.
Resolution
To create the CFS Objects(except Action/profile objects) and policies please refer to:
How to block HTTPS (SSL) sites using SonicWall DPI-SSL and Content Filter Service (CFS 4.0)
To configure the Passphrase action, follow the steps below:
Step 1, Go to Firewall | Content Filter Objects | CFS Profile Objects
Step 2, Click Add to create a new action object(or Edit the CFS Default Action), set the password as below:
Step 2, Click Add to create a profile objects, here a block_bing profile object created for instance.
Step 3, If the websites are in the predefined URI:
Under URI LIst Configuration, In the pull-down menu of Operation for Forbidden URI list, select Passphrase.
If the websites are in the category:
Under Category Configuration, in the pull-down menu of Search Engines and Portals, select Passphrase.
Step 4, Click OK.
How to Test:
Open a web browser and enter https://bing.com
A CFS Passphrase page will appear as under. {If this is being done from the same computer as the one which is logged into the SonicWall Management GUI, make sure you are logged out before testing.}
If the password is correct, you will be allowed to access bing.com.
If the password is incorrect or users click Cancel, you will be forbidden to access bing.com and block page will display as below:
Log View:
Related Articles
- How to block like/comment/post/share features of Facebook using App Rules
- How to block various YouTube features using App Rules
- How can I enable or disable SonicWall firewall management access?
Categories
- Firewalls > SonicWall SuperMassive 9000 Series > Content Filtering Service
- Firewalls > SonicWall NSA Series > Content Filtering Service
- Firewalls > TZ Series > Content Filtering Service
YES
NO