Filter
Top Products
22
NOTE: You can create a firewall rule for any given user/group and restrict that group’s overall bandwidth
for any network service/protocol. Consider also using Application Firewall which allows more granular
control of bandwidth policies.
Blocking Websites (Domain Names) for Groups/Users
Enhanced SonicOS has a few mechanisms at your disposal to block websites from users, such as:
• FW rules
• Application Firewall (all NSA models and PRO series 3060 or higher)
• Content Filter Service (CFS)
• SSL Control
Blocking Domains with Firewall Rules
To block domains with FW rules, you must first create an address object (AO) for the fully qualified domain
name (FQDN). In the following example, we will create an AO for google.com and yahoo.com. After those
have been created, we will put those AOs in an AO Group. Less work is involved by creating FW rules for AO
Groups instead of individual address objects.
For more details on how to create AO by using FQDN objects or MAC addresses, refer to the follow paper:
Dynamic Objects HTTP://www.sonicwall.com/downloads/Dynamic_Address__Objects_FM.pdf
Step 1: Create an AO for google.com by navigating to Network > Address Objects.