cancel
Showing results for 
Search instead for 
Did you mean: 
Create a Post

URLs for Category Testing

Hi,

A customer would like to be able to test that a deployed URL Filtering policy is working correctly and blocking or allowing access to different groups of users.

Do Check Point provide a similar database of URLs to that seen at testwebsensedatabase.com (ForcePoint) so that specific categories can be confirmed to be blocked for certain users without having to try and visit a site that belongs to that category?

Clearly they don't want to be trying to go legitimate pornography sites or other questionable sites just to confirm the policy is correctly applied.

Thanks

0 Kudos
7 Replies

Re: URLs for Category Testing

Hi Paul,

I'm pretty sure that similar questions have been raised on Check Mates before and I don't believe that there is such a 'database' (not one that Check Point offers anyway). You can verify URL categorization as outlined on sk69200 but no, I don't think there is such a database.

 

 

 

Admin
Admin

Re: URLs for Category Testing

You can see what category a particular URL will map via https://urlcat.checkpoint.com/
What the policy will be for a given user can't be seen here.

Interestingly, Google Chrome marks http://testdatabasewebsense.com/ as malicious.
Also, the background image for this site is being flagged by ThreatCloud as malicious.

As far as I know, we don't have our own such page, but I'll ask around.

Re: URLs for Category Testing

Admin
Admin

Re: URLs for Category Testing

That might work for seeing if malicious content, but it doesn't check if my policy is blocking a specific content category for a specific user.
They aren't known "safe" URLs that trigger the various App Control/URL Filtering categories similar to the URLs we maintain for Threat Prevention blades.
0 Kudos

Re: URLs for Category Testing

That's interesting. Although it won't test URL Categories for me, it looks like a useful test for whether various blades are functioning.
0 Kudos

Re: URLs for Category Testing

Yes! Are you all green?
Regarding URL tests, I want to believe the names of the categories are self-explanatory and when you pick them, you already know in mind which specific sites you don't want to use. Can you give me an example of a category where you are not sure which examples are relevant?
0 Kudos

Re: URLs for Category Testing

I've not run the tool Tomer. I would need the customer to run it.

Well an example might be malicious sites. Customer wants to be sure they are blocked without visiting them. Even if they know a URL that is categorised as such, should they be testing to a 'genuine' malicious site to see if the policy works? If it's not configured properly and then they connect to the malicious site rather than being blocked they've now potentially infected or exposed themselves.

0 Kudos