Web filtering

When the users of your network send requests for web access, Web Gateway filters these requests, as well as the responses that are sent back from the web. Embedded objects sent with requests and responses are also filtered.

Web filtering is performed in various ways. It is controlled by rules, which you can review and modify to adapt them to the requirements of your web security policy.

Default filtering on Web Gateway includes:

  • Anti-malware filtering — Blocks access to web objects that are infected by viruses and other malware
  • URL filtering — Blocks or allows access to web objects with particular URLs

    URL filtering is performed by the rules of two default rule sets: URL Filtering and Dynamic Content Classification.

  • Media type filtering — Blocks or allows access to web objects that belong to particular media types
  • Global whitelisting — Allows access to web objects before any of the rules for the above filtering methods are applied.

A rule set for SSL scanning is included in the default system, but not enabled. SSL scanning enables the filtering of requests that are sent on SSL-secured connections.

You can implement more web filtering rules on Web Gateway by importing suitable rule sets from the rule set library. This library offers, for example, rule sets for application and HTML filtering.