How to configure URL blacklist or whitelist using Omada Controller's URL Filtering feature
URL Filtering is a useful function in Omada Controller, which allows the admin of the network to set URL permit lists and URL deny lists for the network clients.
- The application scenarios of the blacklist
If the network administrator doesn’t want the network users to access some websites, for example, like parental control, the parents don’t want their children to visit some unscrupulous websites, they can set a URL to deny lists to prevent traffic directed to these sites.
- The application scenarios of whitelist
If the network administrator doesn’t want the network users to access the whole internet except few specific websites, for example, in a company the office network can’t access the internet, but the employees need to access certain information search sites, the network administrator can set a URL whitelist to meet this need. This article will guide you to set a URL blacklist or a URL whitelist using Omada Controller’s URL filtering feature.
Gateway Rules and EAP Rules
There are two kinds of devices that you can apply URL Filtering Rules to, Omada Gateway or EAP. If applying a URL Filtering Rule to EAP, this rule will affect the wireless devices that connect to the EAP. If applying a rule to the gateway, the rule may affect any devices in the local network according to the rule settings.
- URL blacklist
- Go to Settings -> Network Security -> URL Filtering, choose Gateway Rules or EAP Rules according to your purpose, then click “+ Create New Rule”. Here we take Gateway Rules as an example.
- On the new page, please enter the name of the rule, check “Enable” at Status, and choose “Deny” Policy. The Source Type decides what kind of source the rule is applied to. You can choose the source according to the subnet or the IP address. If it is an EAP Rule, the source type will be the SSID. Finally, please add all the website URLs that you want to block. Please note that the domain name which contains a wildcard (*) is supported, like *.google.com. One domain name with a wildcard (*) can match multiple subdomains. Click apply, and the URL blacklist has been made.
Upon configuration, the devices connected to the wireless network cannot access sites in the URL Filtering Rule.
- URL whitelist
- Here we also take Gateway URL whitelist as an example. The first step is to set a list of URLs that allows the clients to access them. The process of this step is as same as the process of setting the URL blacklist, except choose “Permit” Policy rather than “Deny” Policy. Please refer to the “URL blacklist” part in this article for configuration.
- Another rule is required to prevent the clients from accessing all other websites. Click “Create New Rule”, enter the name of this deny rule, choose the policy as “Deny”. After choosing the source type, in the URL bar, enter a “.” symbol to represent all possible URLs, like the following figure:
Note: If you are setting EAP URL whitelist, please use “*” Symbol instead of “.” symbol, like the following figure:
- Finally, make sure there are two URL Rules, and the first one being the permit rule, the second one being the deny rule, like the following figure.
Is this faq useful?
Your feedback helps improve this site.
Still need help? Search for answers, ask questions, and get help from TP-Link experts and other users around the world.