SonicOS 7.0 DPI-SSL
- SonicOS 7.0
- About DPI-SSL
- DPI-SSL/TLS Client
- Deploying the DPI-SSL/TLS Client
- Applying DPI-SSL/TLS Client
- Viewing DPI-SSL Status
- DPI-SSL/TLS Server
- SonicWall Support
Specifying CFS Category-based Exclusions/Inclusions
You can exclude/include entities by content filter categories.
To specify CFS category-based exclusions/inclusions:
- Navigate to the POLICY | DPI-SSL > Client SSL page.
-
Click CFS Category-based Exclusions/Inclusions.
The status of the list is shown by an icon at the top of the view. A green icon indicates Content Filtering is licensed, a red icon that it is not.
-
Choose whether you want to include or exclude the selected categories by clicking either:
- Exclude (default)
- Include
By default, all categories are unselected.
- Optionally, repeat Step 3 and Step 4 to create the opposite list.
- Select the categories to be included/excluded. To select all categories, click Select all Categories.
-
Optionally, to exclude a connection if the content filter category information for a domain is not available to DPI-SSL, select the Exclude connection if Content Filter Category is not available checkbox. This option is not selected by default.
In most cases, category information for a HTTPS domain is available locally in the firewall cache. When the category information is not locally available, DPI-SSL obtains the category information from the cloud without blocking the client or server communication. In rare cases, the category information is not available for DPI-SSL to make a decision. By default, such sites are inspected in DPI-SSL.
- Click Accept.
Was This Article Helpful?
Help us to improve our support portal