F3726, F3211, F3174, R5135, R3816-HP Firewalls and UTM Devices Attack Protection Configuration Guide-6PW100
114
NOTE:
• Content filtering policy templates created in system view belong to the default VD.
• Content filtering policy templates created in VD view belong to the corresponding VD.
110BDisplaying and maintaining content filtering
Perform display commands in any view and reset commands in user view.
Task Command
Displaying URL parameter filtering
information.
display content-filtering url-filter parameter [ all | item keywords |
verbose ] [ | { begin | exclude | include } regular-expression ]
Displaying java blocking information.
display content-filtering java-blocking [ all | item keywords |
verbose ] [ | { begin | exclude | include } regular-expression ]
Displaying ActiveX blocking
information.
display content-filtering activex-blocking [ all | item keywords |
verbose ] [ | { begin | exclude | include } regular-expression ]
Display content filtering statistics. display content-filtering statistics [ vd vd-name ]
Clear content filtering statistics. reset content-filtering statistics [ vd vd-name ]
111BInterzone content filtering configuration example
217BNetwork requirements
As shown in 419HFigure 96, hosts on the subnet 192.168.1.0/24 can access the Internet through the Firewall.
Perform the following configuration:
• Configure HTTP body filtering to block HTTP responses with keyword abc.
• Enable HTTP java applet blocking to permit java applet requests only sent to the web server with IP
address 5.5.5.5.
• Configure SMTP attachment name filtering to block emails with .exe attachment.
• Configure FTP upload filename filtering to block uploaded files with name abc.
• Configure Telnet command word filtering to block commands with keyword reboot.
Figure 96 Network diagram