It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda CloudGen Firewall

This Firmware Version Is End-Of-Support

Documentation for this product is no longer updated. Please see End-of-Support for CloudGen Firewall Firmware for further information on our EoS policy.

How to Create a URL Filter Policy Object

  • Last updated on

A URL Filter Policy object determines how a website that matches one of the URL categories is handled by the Barracuda CloudGen Firewall. To override Barracuda Networks' URL database, you must define custom URL block and allow lists. If you are migrating a large number of domains to your block or allow list, create a list with one domain per line. Use the bulk edit feature and copy/paste the list to the custom URL block or allow lists. In bulk edit mode, you can only select one action for the allow list. To define the allow action per domain, disable bulk edit. The following actions are available for each URL category: 

  • Allow – The user can access the website.
  • Block – The user is blocked from viewing the website and is redirected to the customizable URL Filter block page. For more information, see How to Configure Response Messages.
  • Warn and Continue – The user can visit the web page after clicking Continue on the customizable URL Filter warning page. This action is logged to Box/Firewall/acknowledged. For more information, see How to Configure Response Messages.
  • Alert – Visiting a website in this category is silently logged. Go to FIREWALL > Monitor, Filter Settings and activate the filter for 'Warned' to see the logged alerts.
  • Override – Allow the user to request temporary access from an admin. Upon receiving the request, the override admin must log into the override admin interface to grant access for a specific amount of time to this otherwise blocked URL category. The admin can only grant overrides for the URL category, not for specific websites.

Before You Begin

Before you create URL Filter Policy objects, verify that you have enabled the URL Filter. For instructions on how to activate the URL Filter, see How to Enable Application Control

Create a URL Filter Policy Object

  1. Go to CONFIGURATION > Configuration Tree > Box > Virtual Servers > your virtual server > Assigned Services > Firewall > Forwarding Rules.
  2. Click Lock.
  3. In the left menu, click  URL Filter.
  4. Create the URL Filter Policy object by either right-clicking the table and selecting  New > URL Filter Policy object or by using the icons in the top-right area of the ruleset.
    url_policy0a.png
  5. Click Advanced Settings. The URL Cat Policy Object - Advanced Settings window opens. 
  6. Select the Action if online URL database is unavailable.
  7. Enter the timeout for Warn and Continue Override valid for [min]. Default: 10 min. 
  8. Click OK.
    url_policy00.png
  9. Click Default Action and select Block, Allow or Alert from the drop-down list. 
    url_policy01.png
  10. Select Block, Allow, Warn and Continue, Alert or Override in the Action column for each URL category.
    url_policy02a.png
  11. (optional) To allow or block specific domains, select Custom URLs.
    1. For each block-listed domain, click + to add a domain to the Block List.
    2. For each allow-listed domain, click + to select the action and to enter the domain name in the Allow List.
      url_policy_04.png
    3. Enable Bulk Edit to enter a large number of domains. Each domain must use a new line. In bulk edit mode, only one action can be set for the Allow List. Disable Bulk Edit after entering the domains to select the Action per entry.
      url_policy_05.png
  12. Click Save.
  13. Click Send Changes and Activate.

You can now apply the URL Filter policy object to selected Application Rules. For more information, see How to Create an Application Rule.