< Knowledge Base

Block Social Networking Websites by Web Content Filter

Published On: Jan 25, 2018 

We may use URL Content Filter to block a specific website; however, if we want to block all the social networking websites, it will take a lot of time specifying each of the URLs, and this is when Web Content Filter (WCF) becomes a better option. Web Content Filter is a category-based filter, which helps network administrators efficiently control the types of websites that the LAN client allowed to visit. This article demonstrates how to use Web Content Filter to block all the social networking websites.

1. Add a new WCF profile: Go to CSM >> Web Content Filter Profile,

  • Make sure the Web Content Filter license is activated.
  • Click on an available index to add a new profile.

2. Configure the WCF profile as follows:

  • Enter a profile name, here we use Social Network
  • Set Action to “Block”
  • Select the category of websites you would like to block, the category of a website can be checked from http://www.cyren.com/url-category-check.html. Here we choose “Social Networking”.

3. To filter the HTTPS websites as well, adding a DNS Filter is recommended. Go to CSM >> DNS Filter, and click on a profile index.

4. Edit the DNS profile as follows,

  • Enter Profile Name
  • Select WCF as the Web Content Filter Profile created in Step 2
  • Click OK to save

5. To apply the Web Content Filter and DNS Filter, go to Firewall >> Filter Setup >> Set 2, and click on a Filter Rule number

  • Enable the Filter Rule
  • (Optional) Edit Source IP if you would like to apply this policy to some of the LAN hosts, or you may just leave it as "Any" if you would like to apply the filter rule to all theLAN host.
  • Select Filter as "Pass Immediately"
  • Select Web Content Filter as the profile created in Step 2
  • Select DNS Filter as the profile created in Step 3
  • Click OK to save

6. After finishing the above settings, all the social networking websites will be blocked by Web Content Filter and DNS Filter with Vigor Router, even if the website uses HTTPS.

How to make a social networking website to bypass the rule?

If there's a website you would like to allow access but it belongs to the social networking category, you may add its URL into the White List of Web Content Filter profile. Below we take "www.linkedin.com" for example.  

1. Go to Objects Setting >> Keyword Object, create an object and enter the keyword of that website's URL in Contents.

2. Edit the Web Content Filter profile as follows,

  • Enable White/Black List
  • Set Action to "Pass"
  • Click Edit and select the Keyword Object created in the previous step.
  • Click OK to save the profile.   

3. Now, the LAN clients will be able to visit www.linkedin.com even if it's categorized as a Social Networking website.

1. Go to Object Setting >> Web Category Object >> Web Category Object. After activating the Web Content Filter service via “Content Filter License”, click Add in the “Web Category Object” to start.

2. Enter a profile name, and choose the categories you want to filter. Here we choose Social Networking. Then, click Apply to save the profile. (Note: We can check out which category a website belongs to by visiting http://www.cyren.com/url-category-check.html)

3. Go to Firewall >> Filter Setup >> URL/Web Category Filter, and click Add.

4. Type a Profile name, check Enable, and select "Enable" for Filter https. Check the profile created in the previous step in policy > Web Category Block. Then, click Apply to save the settings.

5. Now, LAN clients should see the message below when they try to access a networking website, such as Facebook.

Related Articles