Block access to web objects globally

Create lists of web objects that you want to block access to globally.

When the web policy is applied to a web request, the Global Block rule set is the first rule set applied. When the request is blocked, all further rule processing stops.

Task

  1. From the MVISION Cloud navigation bar, select PolicyWeb PolicyPolicy.
  2. In the policy tree, select Global BlockGlobal Block Lists.
  3. Optionally configure criteria to limit the scope of this rule set.
  4. Select the global block rules that you want enabled. When selected, the rules:
    • Domains Block List — Blocks web requests sent to the domains in this list.
    • Connection IPs Block List — Blocks web requests sent from the connection IP addresses in this list.

      The connection IP is the IP address of the firewall or other device between your organization's network and the cloud (your public IP address).

    • Client IPs Block List — Blocks web requests sent from the client IP addresses in this list.
    • Destination IPs Block List — Blocks web requests sent to the IP addresses in this list.
    • User Groups Block List — Blocks web requests sent by users who are members of the groups in this list.
    • User Names Block List — Blocks web requests sent by users having the user names in this list.
    • Processes — Blocks web requests sent from the process names in this list.
  5. Configure the lists associated with the rules as needed.

Results

Changes to the policy tree, rule sets, or rules are automatically saved. You can publish them to the cloud now or keep working and publish later.