SonicOS 7 CFS: URI List Restrictions
New to Gen7 - we have the CFS setup to block all categories, and allow access to sites in the Allow URI list. How do I allow the entire 18.104.22.168 - 22.214.171.124 range? In Gen6 I was able to add both 17.* and 126.96.36.199/8 to the URI list (although the latter may not have had the effect I was going for), but on my Gen7 SonicWall I get errors when trying to add either of those. I'm not going to know all the URL wrappers for the IP addresses within the range - how can I whitelist the range as simply as possible?
Thanks in advance!
BWC Cybersecurity Overlord ✭✭✭
Hi @DrewK I did a quick test on 188.8.131.52 (hope that applies to 7.0 too) and when an URL gets blocked by CFS I can force access by having an Address Object in the CFS Exclusion - Excluded Address setting.
I always thought it's valid for Source/Destination IP but wasn't sure anymore since you mentioned it.
@DrewK wouldn't it be easier to exclude 184.108.40.206/8 from CFS at all? But this might mess with your statistics, if you need to know the CFS rating of the accessed URLs in that netblock.
Are you suggesting I can add an Address Object for that range, and include it in the Group under Security Services - Content Filter: Excluded Addresses? I was always under the impression that those were local Objects/Group on the private W/LANs, but reading the description again, that's not specified.
If I can add WAN endpoints to that group as well, it should certainly work. Thank you for the suggestion!