SonicWall Content Filtering (CFS) Custom List

03/26/2020 294 People found this article helpful 44,088 Views

Download

Print

Share

• LinkedIn
• Twitter
• Facebook
• Email
• Copy URL The link has been copied to clipboard

Description

SonicWall Content Filtering (CFS) Custom List

Resolution

Custom List:

Custom List allows you to customize your URL List to include Allowed Domains, Forbidden Domains, and Keywords. By customizing your URL list, you can include specific domains to be allowed or blocked. You can also block specific keywords.

Custom Lists is of two types: Global Custom List and Per Policy Custom List

Global Custom List

• When CFS is licensed, Global Custom List will take effect only if a CFS policy, Default or custom created,  selects the source of Custom List as Global.
• For Allowed Domains, a maximum of 1024 domains can be added. The maximum length of a domain should not be longer than 46 characters.
• For Forbidden Domains, a maximum of 1024 domains can be added. The maximum length of a domain should not be longer than 46 characters.
• For forbidden Keywords, a maximum of 100 keywords can be added.  The maximum length of a keyword should not be longer than 15 characters.

Per Policy Custom List

• Per Policy Custom Lists belong to a specific CFS policy. Per Policy Custom List can only be configured when CFS is licensed, and CFS Policy Assignment is “Via User and Zone Screens”.
• When CFS is licensed, it will take effect if a CFS policy selects the source of custom list as Per Policy.
• For Allowed Domains, a maximum of 100 domains can be added. The maximum length of a domain should not be longer than 46 characters.
• For Forbidden Domains, a maximum of 100 domains can be added. The maximum length of a domain should not be longer than 46 characters.
• For forbidden Keywords, a maximum of 100 keywords can be added.  The maximum length of a keyword should not be longer than 15 characters.

How Custom Lists are Enforced

In multiple CFS policies deployment, the least restrictive logic used for URL Categories is followed in Custom List enforcement.

If the Source of Forbidden Domains in the Custom List of Default policy is set to Global and the Source of Forbidden Domains in the Custom List of a custom created policy is set to Local, the domain must be entered in the Forbidden Domains of Global Custom List as well as the Forbidden Domains in the Custom List of the custom created policy.

If the Source of Forbidden Domains in the Custom List of Default policy is set to Local and the Source of Forbidden Domains in the Custom List of the custom created policy is set to Local, the domain must be entered in the Forbidden Domains in the Custom List of Default policy as well as the Forbidden Domains in the Custom List of the custom created policy.

If the Source of Forbidden Domains in the Custom List of Default policy is set to None and the Source of Forbidden Domains in the Custom List of the custom created policy is set to Local, the domain must be entered only in the Forbidden Domains in the Custom List of the custom created policy.

If the Source of Forbidden Domains in the Custom List of Default policy is set to Global and the Source of Forbidden Domains in the Custom List of the custom created policy is set to None, the domain must be entered only in the Forbidden Domains of the Global Custom List.

Related Articles

• How to Create Gen 7 Settings File by Using the Online Migration Tool
• DNS Resolution of Wildcard FQDN Address Objects
• All associated wildcard FQDN IP addresses do not display in the web browser

Categories

• Firewalls > TZ Series
• Firewalls > SonicWall SuperMassive E10000 Series
• Firewalls > SonicWall SuperMassive 9000 Series
• Firewalls > SonicWall NSA Series