Remote Monitoring & Management Help

General

The General section is used to configure the overall policy settings including how data is handled, the message displayed to an end user when a site is blocked and the end user interaction.

Settings

Policy Name

Used to identify this specific policy

Report Only *

Instructs the Agent to only capture traffic for reporting purposes and not enforce the policy's settings.

Please note that selecting Report Only disables all other policy options.

Block Page

Create the custom Block Page message displayed to the end user's where access to a website is denied.

Substitution strings may be incorporated into the Block Page message to provide detailed information to the end user on why the website they attempted to access was blocked; the available strings include the block reason, website's category and reputation score.

Substitution Strings

Enter the following substitution strings in the Block Page to include the required information when a website is blocked:

From 10.4.0

Supported Substitution Strings

Notes

!url!!

Website URL (if known)

!policy!!

Name of applied policy rule*

!category!!

Name of category*

!reputation!!

Website reputation score

* English only

To ensure this message directly reflects your requirements we have included option to edit the HTML version of the message directly by clicking on the additional options menu >> to select Source Edit.

Amongst the various options this can be used to embed your own webpage, images and comments in the Block Page. For example, host a custom block webpage and reference it in the Block Page, perhaps using an iframe: <iframe src="http://www.your.domain/block.html" width="400" height="300"; frameborder="3"></iframe> or simply include your logo when blocking: <img src="http://www.your.domain/logo.gif" width="680" height="80">

Notes

Where HTTPS websites are blocked, including those returned as part of a redirect, an SSL error is displayed rather than the Block Page message.

The Block Page can be up to 2000 characters and supports the direct entering of special character, there is no need to enter the HTML version, unless adding in the Source Edit dialog. For example, Den här sidan har blockerats enligt företagets IT policy will appear in the Block Page as entered. Please note, any text entered in the Block Page counts towards the 2000 character limit.

Reputation Block Range *

Use this setting to finely tune the security policy based on your risk tolerance. Websites are blocked when their reputation is within the entered range.

Website are classified as:

Range

Category

Notes

1-20

High Risk

These are sites where there is a high predictive risk that the user will be exposed to malicious links or payloads.

21-40

Suspicious

These are sites where there is a higher than average predictive risk that the user will be exposed to malicious links or payloads.

41-60

Moderate Risk

These are generally benign sites, but have exhibited some characteristics that suggest security risk. There is some predictive risk that the user will be exposed to malicious links or payloads.

61-80

Low Risk

These are benign sites, and rarely exhibit characteristics that expose the user to security risks. There is a low predictive risk of malicious links or payloads.

81-100

Trustworthy

These are well known sites with strong security characteristics. There is very low predictive risk that the user will be exposed to malicious links or payloads.

The default value is 40, blocking all High Risk and Suspicious websites.

Please note that regardless of its reputation, a website is allowed when it is in the Whitelist

Include Local Network Traffic *

This option controls the content filtering on the local network traffic. Where the setting is enabled, all local network traffic with IP addresses in the following ranges are inspected and reported on by Web Protection.

192.168.0.0 192.168.255.255

172.16.0.0 172.16.255.255

10.0.0.0 10.255.255.255

End-User Interaction

Show Taskbar Icon *

Display messages to the end user when any Web Protection actions are taken, including the blocking of sites that were accessed programmatically.

Show Notifications *

Show Windows notification alerts to the user when Web Protection actions are taken.

* Please note that these options are only supported in the Web Protection engine included from Agent 10.4.0

General

web_policy_general

Example of Block Page Message and Taskbar Icon Notification - Agent 10.4.4 or later

block_page