This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Web Filter Policy Customization

I would like to accomplish the following with using Web Filter Policy. This is for a home network so there is no AD.

Policy A = Allows Social Media Sites. My 16 year old has facebook, as do I.

Base Policy = Set up for the general filtering I want at the house. In general I don't want my 7 year old to get to Social Media.

What I would like to do is set Policy A to only pass the Social Media Rule to what ever IP address is assigned to that policy. But the rest is still controlled by the base policy.

Example: My computer goes to social media because policy A says it can, however it can't go to adult site because base policy says it can't. (So I don't have to rebuild base policy rules into every 'exception' I create.)



This thread was automatically locked due to age.
Parents
  • Hi, Adam, and welcome to the UTM Community!

    You can require authentication for access to a specific Policy.  On the 'Misc' tab of 'Filtering Options', you can change the 'Authentication timeout' from the default of 900 seconds.  You would need only the "Default" Profile with three Policies -  First, one for the Parents, next, one for the 16 year old and, finally, one for everyone else.  Each Policy would assign a different Filter Action.  Filter Actions are not additive as you assumed.  Exceptions apply to all Filter Actions.  In your case, I would have separate User accounts for the Parents and the 16 year old, but not one for the 7 year old.

    As the father of two 30+ year olds, I should have insisted that they friend my wife or me as a condition of using Facebook when they were living under our roof - just sayin'...

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • Hi, Adam, and welcome to the UTM Community!

    You can require authentication for access to a specific Policy.  On the 'Misc' tab of 'Filtering Options', you can change the 'Authentication timeout' from the default of 900 seconds.  You would need only the "Default" Profile with three Policies -  First, one for the Parents, next, one for the 16 year old and, finally, one for everyone else.  Each Policy would assign a different Filter Action.  Filter Actions are not additive as you assumed.  Exceptions apply to all Filter Actions.  In your case, I would have separate User accounts for the Parents and the 16 year old, but not one for the 7 year old.

    As the father of two 30+ year olds, I should have insisted that they friend my wife or me as a condition of using Facebook when they were living under our roof - just sayin'...

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data