This article applies to our On-Premise Appliance Filter and Firewall product only, not to Cloud.
The easiest way to see lists of websites that users attempted to visit but were blocked is by using the built-in Report templates. You can use:
- Top blocked domains by hits to see blocked domains for all users. This report shows up to 500 rows and allows you to group top-level domains (TLDs) and subdomains together.
- Complete user audit trail to see blocked domains for a specific user. This report shows all results with TLDs and subdomains listed separately.
Tip
To check if a particular website would be blocked if users tried to visit it:
- Review your Web Filter Policies and the Categories they use, including Built-in Categories or Custom Categories that include URL or domain filtering.
- Test whether a Built-in Category is blocked or allowed based on your setup.
- Test whether a specific website would be blocked for a Tenant, user or User Group at a certain time or location.
Complete user audit trail
- Edit the Report template.
- In the Options tab, select Advanced.
- In the Request status section, select the Denied checkbox.
- Enter a Username.
- Run the report.
Top blocked domains by hits
- Edit the Report template.
- In the Options tab, change the Display Top number to 500.
- Select Advanced.
- In the Request status section, select the Denied checkbox.
- In the URL Parsing section, select all three checkboxes.
- Run the report.
If the report doesn’t include all blocked domains:
- Reduce the data range by adjusting the Start and End times and dates (for example, restrict the report to the last 24 hours), then run the report again.
- Apply filters to show data only for a specific Category, Group (User Group), Tenant or Username (user).
Tip
In the Export tab, select filtering options to show on the main reports page to reduce the data shown in your reports more easily.