bt-WebFilter
Quick Start Guide
Registering the Domain
bt-WebFilter uses the Windows Integrated Security for verifying users
rights, consequently the initial startup requires bt-WebFilter to ‘register’
a domain to access group and user information.
NOTE: To apply different
policies to different groups, it is necessary to enable 'authentication'
on the MS ISA Server. If you are not authenticating users, it is not necessary
to 'register the domain'.
After starting the bt-WebFilter management console: Click the Access Rules icon in the left pane
Right-click and select Register Domain
Select the appropriate element in the drop down list
Click OK
top
Setting the Internet
access policy
bt-WebFilter offers three policy options and the capability to override
those policies for individual groups or users. To set policies: Click on the appropriate domain in the left pane
Right click and select Properties
The first tab allows you to set a customized URL to redirect users attempting
to access restricted web sites. NOTE: it is necessary to input the complete
URL (i.e. http://www.burstek.com/RedirectPage.asp)
top Exempting users:
To add specific users to either Full Access or No Access groups overriding
Permissions and Restrictions for their group(s): Click on the appropriate tab
Click the Add button
Use the appropriate buttons to select groups and users from the popup
window displaying the domain groups and users.
Click the Apply or OK button to save the settings. top Access Rules Policy
Definitions Permission policy – No users have Internet access unless permissions
have been specified. Select this policy to limit users to specific categories or URLs (i.e.
Schools to limit a group to the Education category supplied with bt-ISAFilter).
Restriction policy (default) – ALL users have unlimited Internet
access unless restrictions have been specified. Select this policy to allow users and/or groups to go everywhere except
specific categories or URLs (i.e. block Sex and gambling only). Combination policy – NO users have Internet access unless Permissions
and Restrictions have been specified. Select this policy to allow some users and/or groups to go only to specific
categories or URLs, and allow other users/groups to go everywhere except
specific categories or URLs (i.e. block Sex).
top
Enabling Authentication
For WebFilter plug-in for Microsoft ISA Server: Open the MS ISA Server Management Console
Right-click your server name in the top left navigation pane and select
Properties
Select the 'Outgoing Web Requests' tab
Check the box 'Ask unauthenticated users...' near the bottom of the screen
For WebFilter standalone version: Open the Burstek WebFilter Management Console
Right-click your server name in the top left navigation pane and select
Properties
Click the 'Proxy Options' tab
Check the appropriate boxes 'Authentication' section
top
Assigning Permissions
and/or Restrictions to groups
To apply Permissions or Restriction policies to groups: Click on the appropriate group in the left pane
Right-click and select Properties
The common information tab displays all user names for the group
top
Allow or Deny Categories
To choose the appropriate access object to apply (Category, URL or Protocol):
Click on the Allow or Deny tab
Click the Add button
Select the appropriate radio button to add a Category, URL or Protocol
to be allowed or denied. top
Controlling access
to specific categories
Select the Details tab:
From the drop-down button, select the category to be allowed or denied
Click the Apply button
Repeat the process until selection is complete
Click OK top
Creating Schedules
bt-WebFilter allows you to create schedule templates.
To create a new schedule: Click on the Schedules in the left pane
Right-click and select New
Name the schedule on the Common Information tab
Click on the Properties tab to select and activate by day and/or time.
NOTE: using the Shift and Control keys with the keyboard arrow keys allows
you to select and apply to multiple cells.
top
Updating the URLCategory
List
bt-WebFilter allows you to automatically import the latest or most up-to-date
Control List. The Control List contains the URLs and Categories which
are updated daily.
To import the latest Control List: Click on the URL list in the left pane
Right-click and select Import
The Import of Categories window opens
To download and implement immediately, select the Check for Updates via
Internet button
To download at a later time, select Download and Save Updates to local
path.
Note - you will then have to re-open this window and select Import updates
from local path at a later time.
top
Setting Auditing Features
bt-WebFilter allows you to log and view Internet activity (in real time)
by Users and Web sites.
To establish the maximum log file size and purge information: Click on Auditing in the left pane
Right-click and select Properties
Select Logging tab
Set the maximum log file size and retention period
Verify or change the log file directory
To filter the auditing activity: Click on Viewing tab
Filter by date and/or category
To view the auditing activity: Under Auditing in the left pane
Select Logs, Users or Site statistics
top
WebFilter
is installed, but nothing is being blocked
Burstek's WebFilter installs with a 'default' policy blocking
a selected group of categories (Extreme/Violence, Gambling, Hacking, XXX-Sexual
Content). This policy will automatically be applied if Authentication
is NOT enabled. However, if Authentication is enabled, you must:
Register the domain
Right-click on a specific group and select Properties
Apply the Default Policy to the group or edit your filtering policy (select
the appropriate tab)
If WebFilter does not block sites after following the
instructions above and you are running Windows Server 2003 SP1 or above and
Microsoft ISA Server, please follow the instructions located at the link
below.
Windows Server 2003 Service Pack Issues
top
I need to install
a new version of WebFilter, how do I save my current settings?
Save a copy of the Storage.xml file located in the directory: (Program
Files/Burstek/bt-WebFilter)
This file contains all customized WebFilter data: the Category List, including your own and imported categories,
schedules defined with WebFilter
permissions defined for all groups and users. Storage.xml does not contain WinSock protocols definitions
because WebFilter uses ISA Server's internal database to store them. NOTE: Licensed customers
should contact Burstek for a registration key
stop FStorageSrv service
replace the Storage.xml file with the prior saved file
start FStorageSrv service top
|
