|
Applicable Version: 10.00 onwards
This article describes how we can allow users to access specific websites even though they are not authenticated.
Requirement
Allow unauthenticated users access to specific websites, namely, www.cyberoam.com and www.elitecore.com. The user should not be able to access anything else apart from the mentioned websites without getting authenticated.
Solution
You can allow unauthenticated users to access only the websites mentioned above by following the steps given below.
Step 1: Create Custom Web Category
Go to Web Filter à Category à Category and click Add to create a new Web Category using the parameters given below.
Parameter Description
|
Parameter
|
Value
|
Description
|
|
Name
|
AllowedWebsites
|
Name to identify the Category.
|
|
Classification
|
Productive
|
Specify how the category is classified.
Available options:
- Productive
- Non-Working
- Neutral
- Unhealthy
|
|
QoS Policy
|
None
|
Specify QoS policy to be applied on the category
|
|
Domain/Keyword
|
www.elitecore.com,
www.cyberoam.com
|
Domain: Mention the domain(s) which are to be blocked/allowed.
Keyword: You can also mention keywords. Any URL containing those keywords is blocked/allowed.
|
Click OK to create the web category.
Step 2: Create Web Filter Policy
Go to Web Filter à Policy à Policy and click Add to create a policy using following parameters.
|
Parameter
|
Value
|
Description
|
|
Name
|
Allow_Websites
|
Name to identify the Policy.
|
|
Template
|
Deny All
|
|
|
Download File Size Restriction
|
0
|
|
Click OK to create the web filter policy.
Step 3: Add Web Filter Policy Rule
Select the policy Allow_Websites to create rule for the policy.
Click Add to add a new rule using the parameters given below.
|
Parameter
|
Value
|
Description
|
|
Category Type
|
Web Category
|
Available options:
- Web Category
- File Type Category
- URL Group
- Dynamic Category
|
|
Category
|
AllowedWebsites
|
|
|
HTTP Action
HTTPS Action
|
Allow
|
Select HTTP and HTTPS action.
|
|
|
All the time
|
|
Click OK to add the rule.
Step 4: Configure LAN_WAN_AnyTraffic Rule
Since the LAN_WAN_AnyTraffic Rule is set to drop all unauthenticated traffic, you have to configure it to allow specifically the two mentioned sites.
To configure the rule, follow the steps below.
Go to Firewall à Rule à Rule and select LAN_WAN_AnyTraffic to configure it.
Under the Security Policies section, select Web Filter as Allow_Websites.
Click OK to apply the changes.
The above configuration allows unauthenticated users to access only www.elitecore.com and www.cyberoam.com. All the rest requires authentication.
Document Version: 1.0 – 28/04/2012
| 
