Cisco Cisco ISA570 Integrated Security Appliance Merkblatt

1

This application note provides information on how to configure the Cisco ISA500 
Security Appliance so that you can filter URLs. For example, you can block 
websites that Web URL Filtering usually allows, or allow the websites that Web 
URL Filtering usually blocks.

The Cisco ISA500 has two services to perform URL and Content filtering: Firewall 
Content Filtering or a subscription-based Web URL Filtering (Security Services). 
Only one of these services can be active at a time. This application note describes 
how to perform URL and Content Filtering with Security Services.

The first step to filter a URL is to configure a policy profile. After a policy profile has 
been configured, you use the Policy to Zone Mapping page to apply the Web URL 
Filtering policy profile to each zone.

The policy profile allows you to identify a web site that you want to block or allow.

Up to 16 Web URL Filtering policy profiles can be configured on the security 
appliance.

Click Security Services > Web URL Filtering > Policy Profile. The Policy Profile 
window opens.

Click Add. The Policy Profile - Add/Edit window opens.

Enter a Policy Name and Description.

If you want to block entire URL categories, for example, Social Networking, select 
the categories that you want to block in the Categories Table. If you only want to 
block categories, click OK and then click Save, and go to 

, otherwise continue with the next 

step to block or allow specific URLs.

Click the Edit button.

Click Add. The Website Access Control Rule - Add/Edit window opens.

Enter a URL to block or allow.

Note: If you want to block a URL, ensure that you choose Deny; the Permit option is the default value.