URL Restriction Policy
This policy detects and blocks client requests to the web server that contain specific patterns in the requested URL.
If an incoming URL matches a pattern registered by the administrator, the system blocks it or logs the event according to the configured action.
- Pattern Management: URL restriction patterns are configured in [Template Management] > [URL Restriction Pattern].
For more details, refer to the URL Restriction page. - Policy Application: Click [Add Policy], configure the pattern and response action, then click [OK] to save.
Note
The URL restriction policy performs pattern matching on the entire URL string of GET requests only.
URL Restriction Policy Configuration
[Policy Management] > (Select Domain Group) > [Policy Settings] > Domain Security Policy > [URL Restriction Policy] > [Add Policy]
Select the URL pattern to block and configure the response action.
All configuration changes are recorded in the audit log.
Field Descriptions
| Field | Description |
|---|---|
| ID | Unique identifier of the pattern (or pattern group). |
| Pattern | Select a URL restriction pattern to apply. You may choose an entire pattern group from the tree list or select an individual pattern. |
| Risk Level | Displays the risk level (High/Medium/Low). • System Patterns: Use default risk levels provided by DeepFinder. • User Patterns: Display the risk level set by the administrator when the pattern was created. |
| Action | Select the action when a policy violation (pattern match) occurs. • NONE: No action is applied. • ALLOW: Allows access and skips subsequent policy checks. • DENY: Blocks access and skips subsequent policy checks. • REDIRECT: Blocks access and redirects the user to the designated block page. • DETECT: Logs detection events and continues evaluating subsequent policies. |
| Log Type | Select the detail level of logs when detection occurs. (NONE / LOW / FULL) |
URL Restriction Policy Priority Configuration
[Policy Management] > (Select Domain Group) > [Policy Settings] > Domain Security Policy > [URL Restriction Policy] > [Add Policy] > (Adjust Priority)
You can modify the evaluation order of registered URL restriction policies.
Policies with lower priority numbers (closer to 1) are evaluated first.
After adjusting the order, click [OK] to apply the changes.