Network Connection Monitoring Settings

In this section

General Information

Website Category Selection

Managing File Scanning Parameters

General Information

On the SpIDer Gate page, you can configure security policies used by the SpIDer Gate network connection monitor upon an attempt to access the internet.

Figure 41. Internet access control settings

Figure 41. Internet access control settings

By selecting or clearing check boxes in the Network activity monitoring section, you can define types of network activity to be controlled by the monitor, if it is enabled.

Website Category Selection

Check boxes in the Monitoring options section define categories of websites and hosts to be blocked (this applies not only to attempts to access such websites using a browser, but also to attempts to access FTP servers). By selecting or clearing corresponding check boxes, you can allow or block access to websites and hosts from the following categories:

Category

Description

URLs added due to a notice from copyright owner

Websites with content that infringes copyright (according to the copyright holder of this content). Among those are pirated websites, file link catalogs, file hosting services and others.

Non-recommended websites

Websites with unreliable content (suspected of phishing, password theft and so on)

Adult content

Websites with adult content

Violence

Websites that contain violent material (for example, war scenes, acts of terrorism and so on)

Weapons

Websites that contain information about weapons and explosives

Gambling

Internet casinos, gambling and bookmaking websites

Drugs

Websites that contain information about drug production or use

Obscene language

Websites with obscene language

Chats

Chat websites

Terrorism

Websites that contain information about terrorism

Email

Websites that offer free email registration

Social networks

Social networking websites

Online games

Websites that provide access to games using a permanent internet connection

Anonymizers

Websites that allow the user to hide personal information and that provide access to blocked web resources

Cryptocurrency mining pools

Websites that provide access to common services for cryptocurrency mining

Jobs

Job search websites

A database of web resource categories is provided with Dr.Web Security Space and updated automatically together with virus databases. Users do not have permissions to edit the databases of web resource categories.

The same website can belong to several categories. The SpIDer Gate network connection monitor blocks access to a website or a host if it belongs to at least one of the blocked categories. Click the Block other website categories label to expand or collapse the list of available categories.

If you need to block access to a website or a host which does not belong to any of these categories, add it to the black list. If, otherwise, you need to allow access to a website or a host which belongs to an unwanted category, add such resource to the white list. You can also configure a list of applications which network connections will not be monitored by SpIDer Gate.

You can configure black and white lists of websites and applications to be excluded by the SpIDer Gate monitor from monitoring on the Exclusions page.

As for a special category, Websites known as infection sources, access to websites and hosts belonging to this category is always blocked even if they are added to the white list.

Managing File Scanning Parameters

To configure the parameters used by the SpIDer Gate monitor to scan files downloaded from the internet, click File checking options.

Figure 42. File scanning settings

Figure 42. File scanning settings

In the appeared window, you can specify categories of malicious objects to be blocked on attempt to transfer them. If the check box is selected, attempts to download files that contain a threat of the corresponding category are blocked. If the check box is cleared, files that belong to this category can be downloaded from the internet. You can also set a time limit for scanning downloaded files. If the Block transferring data due to checking error check box is selected, attempts to download files that were not scanned owing to an error are blocked.

If a downloaded file cannot be scanned because the time limit for scanning it has been reached, such file will not be treated as not scanned and will not be blocked even if the Block transferring data due to checking error check box is selected.

To save the changes and close the window, click OK. To discard the changes and close the window, click Cancel.

To change the SpIDer Gate network connection monitor settings, the application must be run with elevated privileges, refer to Managing Application Privileges.

 

Network connection monitoring rules can be edited manually. To configure the component manually, refer to the Administrator Manual for Dr.Web Gateway Security Suite, the section Dr.Web Gateway Security Suite Components ⇒ Dr.Web Firewall for Linux ⇒ Configuration Parameters ⇒ Rules for Traffic Monitoring and Blocking of Access. Manual editing can affect the standard filter configuration performed earlier using the graphical interface.