PLANET CS-2001 User Manual
Page 138
CS-2001 UTM Content Security Gateway User’s Manual
127
FQDN(Fully Qualified Domain Name)
The FQDN consists of two parts: the hostname and the domain name. For
example, an FQDN may b
The hostname is www, and the
domain name is planet.com.tw.
To regulate the access to the specified web site, the IT administrator only needs
to configure an FQDN setting.
Note:
1. FQDN settings helps IT administrator to block all the IP addresses that are mapped to the site.
Normally, the site has more than one IP address, thus, block an IP address does not block the
site reliably. For example, facebook has the IP addresses like 69.171.228.14、69.171.224.39、
69.171.229.14, etc. To block facebook, the IT administrator may block the site by its FQDN
instead of its IP addresses.
2. Instead of type the whole address such as
http://www.facebook.com/#!/profile.php?id=
105520583884516, you merely need to type “hostname + domain name”such as
o complete the FQDN settings.
3. FQDN settings may regulate the protocol like HTTP, HTTPS and FTP, while the
black-/whitelist may regulate HTTP protocol only. To configure the FQDN setting, you may
add an FQDN under Policy Object > Address > WAN first, and then apply it to the policy.
4. Under Policy Object > Address > WAN Group, the newly added *CHINA_TELECOM and
*CNC selections represent two major ISPs in China. During an outward session, in order to
take advantage of policy-based routing (PBR), the device will designate the most appropriate
route based upon the destination address.
5. To quickly create the settings under Policy Object > Address > LAN / DMZ, you may click
Assist Me to automatically obtain data from Monitor > Status > ARP Table / Sessions Info