Manage blocked and allowed sites

Define which websites are always allowed or always blocked based on their URL or domain in the Block and Allow List settings.

Note: Use the policy options for Enforcement Messaging to customize the message that is displayed to users for blocked and warned downloads.

Task

  1. Select MenuPolicyPolicy Catalog, then select Endpoint Security Web Control from the Product list.
  2. From the Category list, select Block and Allow List.
  3. Click the name of an editable policy.
  4. Select one of these.
    Action Steps
    Add allowed or blocked sites to the Block and Allow List. On the Block and Allow List tab:
    1. Click Add.
    2. From the drop-down, select either Allow or Block.
    3. Enter URLs or partial URLs (site patterns) of at least 3 characters.

      For multiple sites, enter a comma-separated list or enter each site on a separate line.

    4. Enter a comment or note to associate with the site (optional).
    5. Click OK.
    Delete sites from the Block and Allow List. On the Block and Allow List tab, select the checkbox next to a site, then click Delete.
    Change information (URL, site pattern, or comment) for a site. On the Block and Allow List tab:
    1. Select the checkbox next to a site, then click Edit.
    2. Change the site pattern or comment as needed.
    3. Click OK.
    Search the Block and Allow List.

    This feature is useful for finding sites in large lists.

    On the Block and Allow List tab:
    1. Enter a URL, site pattern, or text in the Search field.
    2. Click Search.
    Web Control searches all site patterns and comments in the list and shows matches.

    To remove the search criteria and redisplay the list, click Clear.

    Test whether specific sites or site patterns are included in the Block and Allow List.

    For example, when a Block and Allow List is implemented as a multiple-instance policy, use these steps to test the resulting effective policy.

    On the Block and Allow List tab:
    1. Enter a URL or partial URL in the Search field.
    2. Click Test Pattern.

    Web Control displays any site patterns that match your entry. If no site patterns are displayed, the list allows access to the specified URL.

    To remove the test criteria and results, click Clear.

    Block or warn file downloads on allowed sites.

    An allowed site with an overall rating of green can contain individual download files that are rated yellow or red. To protect users, specify an action that is specific to the rating for an individual file.

    1. Click Show Advanced.
    2. Select Enforce actions for file downloads based on their rating.
    3. Select an action (Allow, Warn, or Block) for Red, Yellow, and Unrated files.
    Set action precedence.

    By default, when a site is set to both Allow and Block, the block action takes precedence and the site is blocked.

    Select this option to override the default behavior and make sure that users can access allowed sites, even if they are also blocked.

    CAUTION: Use caution when selecting this option. Make sure that allowed sites are safe so that client systems remain protected from web-based threats.

    1. Click Show Advanced.
    2. Select Enable allowed sites to take precedence over blocked sites.
  5. Click Save.