I have UTM 9.315-2 set up on my home network. I am trying to set up rules such that devices used by my kids can't access adult/p0rn sites. I am having trouble understanding why the setup I have isn't working.
I have a Web Filter Profile set up called "Kids".
Allowed networks: the hosts for the computers and devices they use.
Operation mode: Transparent.
Policies: No Adult Content, and Base Policy
Under Web Filtering -> Policies, I have a policy defined called "No Adult Content"
Users/Groups: Any
Time: Anytime
Filter action: Block Adult Content
The "Block Adult Content" filter action is set up as follows:
Categories: Allow all content except as specified. Category Nudity is blocked, all others are allowed.
Websites: Block These Website has two lists,
one that matches on domain that has many domains listed, and Include subdomains checked
the other has a few regular expressions like "hentai" and nothing else checked
Under Allow These Websites I have listed regular expressions for CrashPlan, because at one point it seemed like the filter was blocking them incorrectly, so I explicitly whitelisted them.
I thought that setup was correct, but when I test using Policy Helpdesk a URL like xvideos.com, and a source address of one of the kids' devices, the result is "Allowed". The filter profile, policy name, and exceptions from the test look correct, but the result is not. Nor does the filter appear to be working in practice when I turn it on. If anything it seems to block the sites on the whitelist, while letting everything on the block list through (though I'm not certain of that).
What else should I be looking at to diagnose this problem?
Thanks.
EDIT: Adding web protection log entry below (obscured one piece of identifying info in the name), and three screen shots showing pages of the Filter Action.
2015:08:27-14:21:33 xREMOVEDx httpproxy[5679]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="192.168.1.102" dstip="141.0.174.36" user="" ad_domain="" statuscode="200" cached="0" profile="REF_HttProContaInterNetwo (kids)" filteraction="REF_HttCffBlockAdultConte (Block adult content)" size="18009" request="0xe33de000" url="www.xvideos.com/.../38.0" exceptions="av,auth,content,url,ssl,certcheck,certdate,mime,cache,fileextension,size"
This thread was automatically locked due to age.