Configuring the Approved/Blocked URL Lists

The approved/blocked URL settings on this screen override the settings defined in the following:

  • URL Filtering

  • Web Reputation

  • Global Approved and Blocked URL Lists

  1. Go to the Configure Policy screen by performing one of the following:

    • Classic Mode: Go to SECURITY AGENTS and select a group. Click > Configure Policy.

    • Advanced Mode: Go to POLICIES > Policy Management. Click Add or click an existing policy.

  2. Click Windows.
  3. Go to Approved/Blocked URLs.
  4. Specify the exceptions to use.

    • Global Approved and Blocked URL Lists: Use the URLs configured in the global exception lists.

    • Specify exceptions: Add approved or blocked URLs to override all other settings.

  5. To add an exception:
    1. Click Add.
      Tip:

      Click the arrow next to Add and select Import from Global Exceptions to add the URLs configured in the global exception lists. You can then customize the required settings.

    2. Specify the approved or blocked URL.
      Table 1. Approved/Blocked URL List

      Exception

      Description

      Examples

      • Approved URL List

      • Blocked URL List

      • The Approved URL List takes precedence over the Blocked URL List.

      • Approving or blocking a URL implies approving or blocking all of its sub domains.

      • The * wildcard character is allowed

        For more information, see the Wildcard Support table below.

      • Use commas, semicolons, or the ENTER key to separate multiple entries

      • Do not use the following characters: " < > |

      • http://website.com

      • http://*.website.com

      • http://www.website*.com/
      Table 2. Wildcard Support

      Wildcard

      Supported Format

      Invalid Format

      The * character matches zero or more characters

      The following URLs using the wildcard are acceptable:

      • http://www.example.com/*

      • http://*.example.com

      Filtering only supports the FQDN, not the path. For example:

      • http://www.example.com/hu* would become http://www.example.com/*

      • http://www.ex*le.com/abc/*.* would become http://www.ex*le.com/*

      The following URLs ending with a wildcard are not acceptable:

      • http://www.example.com*

      • http://www.example.*

      • http://www.example.com.tw.*

      • http://*.example.*

      The following URLs with the wildcard as the last character in the host name are not acceptable:

      • http://www.example.*/test/abc.html would become http://www.example.*/*

      • http://www.example.com*/123/ would become http://www.example.com*/*
    3. Click Add.
  6. To edit an exception:
    1. Click the URL in the list.
    2. Update the exception.
    3. Press the ENTER key to save the changes.
  7. To delete an exception, point to the exception and click in the last column of the list.
  8. If an administrator feels that a URL has been misclassified, go to the following website: http://sitesafety.trendmicro.com/
  9. Click Save.
Parent topic: Windows Policy Settings