SonicWall Content Filtering (CFS) Custom List
03/26/2020 
243 
11321
DESCRIPTION:
SonicWall Content Filtering (CFS) Custom List
RESOLUTION:
Custom List:
Custom List allows you to customize your URL List to include Allowed Domains, Forbidden Domains, and Keywords. By customizing your URL list, you can include specific domains to be allowed or blocked. You can also block specific keywords.
Custom Lists is of two types: Global Custom List and Per Policy Custom List
Global Custom List
- When CFS is licensed, Global Custom List will take effect only if a CFS policy, Default or custom created, selects the source of Custom List as Global.
- For Allowed Domains, a maximum of 1024 domains can be added. The maximum length of a domain should not be longer than 46 characters.
- For Forbidden Domains, a maximum of 1024 domains can be added. The maximum length of a domain should not be longer than 46 characters.
- For forbidden Keywords, a maximum of 100 keywords can be added. The maximum length of a keyword should not be longer than 15 characters.
Per Policy Custom List
- Per Policy Custom Lists belong to a specific CFS policy. Per Policy Custom List can only be configured when CFS is licensed, and CFS Policy Assignment is “Via User and Zone Screens”.
- When CFS is licensed, it will take effect if a CFS policy selects the source of custom list as Per Policy.
- For Allowed Domains, a maximum of 100 domains can be added. The maximum length of a domain should not be longer than 46 characters.
- For Forbidden Domains, a maximum of 100 domains can be added. The maximum length of a domain should not be longer than 46 characters.
- For forbidden Keywords, a maximum of 100 keywords can be added. The maximum length of a keyword should not be longer than 15 characters.
How Custom Lists are Enforced
In multiple CFS policies deployment, the least restrictive logic used for URL Categories is followed in Custom List enforcement.
If the Source of Forbidden Domains in the Custom List of Default policy is set to Global and the Source of Forbidden Domains in the Custom List of a custom created policy is set to Local, the domain must be entered in the Forbidden Domains of Global Custom List as well as the Forbidden Domains in the Custom List of the custom created policy.
If the Source of Forbidden Domains in the Custom List of Default policy is set to Local and the Source of Forbidden Domains in the Custom List of the custom created policy is set to Local, the domain must be entered in the Forbidden Domains in the Custom List of Default policy as well as the Forbidden Domains in the Custom List of the custom created policy.
If the Source of Forbidden Domains in the Custom List of Default policy is set to None and the Source of Forbidden Domains in the Custom List of the custom created policy is set to Local, the domain must be entered only in the Forbidden Domains in the Custom List of the custom created policy.
If the Source of Forbidden Domains in the Custom List of Default policy is set to Global and the Source of Forbidden Domains in the Custom List of the custom created policy is set to None, the domain must be entered only in the Forbidden Domains of the Global Custom List.
Next Generation FirewallNext-generation firewall for SMB, Enterprise, and Government
Security ServicesComprehensive security for your network security solution
Capture Security applianceAdvanced Threat Protection for modern threat landscape
Network Security ManagerModern Security Management for today’s security landscape
Secure Mobile AccessRemote, best-in-class, secure access
Wireless Access PointsEasy to manage, fast and secure Wi-FI
SwitchesHigh-speed network switching for business connectivity
Cloud App SecurityVisibility and security for Cloud Apps
Cloud Firewall (NSv)Next-generation firewall capabilities in the cloud
Capture ClientStop advanced threats and rollback the damage caused by malware
Content Filtering ClientControl access to unwanted and unsecure web content
