2.11  Web Rules Definition

Requirements

Access to Web pages will be limited by the following restrictions:

  • filtering of advertisements included in web pages,

  • access to pages with erotic/sexual content is denied,

  • access to Web pages that offer jobs is denied (only users working in Personal Departments are allowed to access these pages),

  • user authentication will be required before access to the Internet is allowed (this way you can monitor which pages are opened by each user).

Ads filtering and blocking access to specific website categories

The following basic HTTP rules are already predefined and available in the URL Rules tab in Configuration → Content Filtering → HTTP Policy:

  • It recommended to keep rules Allow automatic updates for Kerio software and Allow automatic updates and MS Windows activation enabled. Otherwise automatic updates of Kerio Control and of the server's operating system might stop working correctly.

  • Rules Allow popular search engines and Remove advertisement and banners can be used according to your needs.

  • Rule Deny sites rated in Kerio Control Web Filter categories can be used to block all users access to pages with erotic contents.

    Use the Select Rating... button to select Kerio Control Web Filter categories that will be blocked. Then select appropriate categories in the Pornography/Nudity section to deny access to pages with erotic/sexual content.

    On the Advanced tab, enter the text which will be displayed if a user to access a page with forbidden content or set redirection to another webpage.

Restrictions of web pages with job offers

To restrict access to websites with job offers, use the following rules:

  1. Add a rule allowing users from the Human Resources Department group to access pages categorized by Kerio Control Web Filter as Job Offers.

  2. Behind this rule, add a rule blocking access to the same category for any other users.

    It is recommended not to require user authentication in this rule. This prevents from redirecting unauthenticated users' browser to the authentication page before showing the information that the page is blocked.

User authentication for accessing Websites

The last optional restriction is user authentication while accessing Web pages. To enable this feature, use the corresponding option under Users and Groups → Domains and User Login, the Authentication Options tab.

User authentication is performed within redirection to the Kerio Control web interface's authentication page. It is necessary that the web interface is enabled and all its parameters set correctly (refer to chapter 2.8  Web interface and SSL-VPN certificates). Upon entering a valid username and password, the browser will be redirected to the solicited page.