• Capture Client
• Overview
  • Description
  • Navigation
  • Guide Conventions
• Scopes and Policies
  • Introducing Scope of Operations
  • Using Scope Selector
  • Policy Management
    • Inheritance
    • Policy Types
      • Client Policies
      • Threat Protection Policies
      • Trusted Certificate Policies
      • Web Content Filtering Policies
      • Managing Blacklist
      • Exclusions
        • Hashes
        • Paths
        • Signer Identity
        • File Types
        • Browsers
    • Replicating Policies
    • Group Ranking Policy
    • Creating Custom Policies for Device Groups
    • Device Control
• Protection
  • Tenant Token
  • Installation for the New Clients
  • Migrating Clients Across Regions
  • Protecting Devices
  • Reviewing Registered Devices
    • List View
    • Unmanaged List View
    • Map
  • Active Users
  • Performing System Scan
• Groups
  • Creating a Static User Group
  • Creating Static Device Groups
  • Creating Dynamic Device Groups
  • Creating Custom Rules for Dynamic Groups
• SonicWall Support
  • About This Document

Web Content Filtering Policies

The ability to perform web content filtering has been added to Capture Client’s policy management. You can configure policies that allow or block access to various websites. This allows endpoint security and content filtering to be managed from the same management console, simplifying administration. The feature also includes web-activity reporting for easier monitoring.

If devices protected by Capture Client have Content Filtering Client (CFC) service enforced, the Web Threat Protection & Web-Content Filtering functionalities of CFC are implemented, even if the web-content filtering policy of Capture Client is enforced. In this case, it is recommended to abort CFC service.

To configure web content filtering policy

1. Navigate to Policies > Web Content Filtering.
2. Select appropriate scope from the Scope selector.
3. Enable Enable Web Content Filtering option.
4. Select the web categories that you wish to block from the protected devices that are associated with the web content filtering policy.
5. To perform advanced settings, click Manage advanced settings.
6. Do the following in the ADVANCED SETTINGS section:

   1. To choose to rely on SonicWall Firewall, enable Enforce behind SonicWall Firewall.

      By default, the option is disabled, hence Web Content Filtering is based on the configured web content filtering policy.

   2. For websites that are blocked as per the policy, define the type of block page used:
      • Use default block page

      • Define a custom block page

        To use a custom block page, click Edit custom block page and upload an HTML file by dropping it in the BLOCK PAGE EDITOR window, or select a file manually, and then click Save changes.

7. You can perform the following Custom Settings to set up the following:
   • Allowed web domains – To only allow the URLs that belong to the domains you specify, add the web domains in the Allowed web domains field.
   • Forbidden web domains – To block URLs that belong to the domains you specify, add the web domains in the Allowed web domains field .
   • Forbidden URL Keywords – To block URLs that contain the keywords you specify, add the keywords in the Forbidden URL Keywords field.
   • Allowed process paths – To only allow the paths that you specify, add the path in the Allowed process paths field.
8. Enable/disable these options as needed:
   • Block all unauthorized processes
   • Enable Block request by default when category cannot be determined
   • Show notification when accessing a malware site
   • Force SafeSearch on supported search engines
   • Filter requests to localhost
9. Click Update to save your changes.