Important: The commands or keywords/variables that are available are dependent on platform type, product version, and installed license(s).
priority must be an integer from 1 through 65535, and must be unique in the content filtering policy.
Specifies the category. category must be one of the following.
Important: Content can simultaneously match multiple categories, therefore specific
priority must be used for required evaluation precedence.
string specifies the unclassified category to be rated, and must be an alpha and/or numeric string of 1 through 6 characters in length.
allow: In the case of static content filtering this option allows the request for content, and in dynamic content filtering allows the content itself.
content-insert content_string: Specifies the content string to be inserted in place of the message returned from prohibited/restricted site or content server.
In case of static content filtering, content_string is used to create a response to the subscriber’s attempt to get content, and in dynamic content filtering, it is used to replace the content returned by a server.
content_string must be an alpha and/or numeric string of 1 through 1023 characters in length.
discard: in case of static content filtering this option discards the packet(s) that requested, and in dynamic content filtering it discards the packet(s) that contain(s) the content.
redirect-url url: Specifies redirecting the subscriber to the specified URL.
url must be a string of 1 through 1023 characters in length, and in the http://search.com/subtarg=#
HTTP.URL# format.
terminate-flow: Specifies terminating the TCP connection gracefully between the subscriber and server, and sends a TCP FIN to the subscriber and a TCP RST to the server.
www-reply-code-and-terminate-flow reply_code: Specifies terminating flow with the specified reply code.
reply_code must be a reply code, and must be an integer from 100 through 599.
edr_format_name is the name of a pre-defined EDR file format name in the EDR Format Configuration Mode, and must be an alpha and/or numeric string of 1 through 63 characters in length.
content_id must be an integer from 1 through 65535.
The discarded-flow-content-id configuration can be used for accumulating stats for UDR generation in case CF discards the packets. These stats for UDR generation (based on the CF content ID) would also be accumulated in case of ACS error scenarios where the packets are discarded but the flow does not end.
If, in the Rulebase Configuration Mode, the content-filtering flow-any-error configuration is set to
deny, then all the denied packets will be accounted for by the
discarded-flow-content-id config. I.e. the
content_id will be used to generate UDRs for the denied packets in case of content filtering.
In case of static content filtering, the content_string is used to create a response to the subscriber’s attempt to get content, and in dynamic content filtering it replaces the content returned by a server.
content_string must be an alpha and/or numeric string of 1 through 1023 characters in length.
url must be a string of 1 through 1023 characters in length, and must be in the following format:
reply_code must be a reply code, and must be an integer from 100 through 599.
edr_format_name is the name of a pre-defined EDR file format name in the EDR Format Configuration Mode, and must be an alpha and/or numeric string of 1 through 63 characters in length.