Testing web resource access rules

In the local interface, you can check the consistency of rules by using the Rules diagnostics function.

To test the web resource access rules:

1. On the protected virtual machine, open the application settings window.
2. In the left part of the window, in the Endpoint control section, select Web Control.

   In the right part of the window, the Web Control component’s settings are displayed.

3. In the lower part of the window, click the Diagnostics button.

   The Rules diagnostics window opens.

4. Fill in the fields in the Conditions section:
   1. If you want to test the rules that the application uses to control access to a specific web resource, select the Specify address check box. Enter the address of the web resource in the field below.
   2. If you want to test the rules that the application uses to control access to web resources for specific users or groups of users, specify the user name or user group name. To do this, perform the following actions:
      1. Select the Specify users and/or groups check box and click the Select button.

         The standard Select Users or Groups window in Microsoft Windows opens.

      2. In the Select Users or Groups window in Microsoft Windows, specify the relevant user or user group and click OK.
   3. If you want to test the rules that the application uses to control access to web resources of specified content categories and/or data type categories, from the Filter content drop-down list, select the required option (By content categories, By types of data, or By content categories and types of data), and select check boxes next to the names of the relevant content categories and/or categories of data types.
   4. If you want to test the rules with account of the time and day of the week when an attempt is made to access the web resource(s) that are specified in the rule diagnostics conditions, select the Include time of access attempt check box. Specify the day of the week and time on the right.
5. Click the Validate button.

A completed rule test is followed by a message with information about the action that is taken by the application, according to the first rule that is triggered on the attempt to access the specified web resource(s) (allow, block, or warn). All triggered rules are tested next.

Test completion is followed by a message on the right of the Validate button with information about the action that is taken by the application, according to the first rule that is triggered on the attempt to access the specified web resource(s). The first rule to be triggered is the one with a rank on the list of Web Control rules which is higher than that of other rules meeting the diagnostics conditions. The table in the lower part of the Rules diagnostics window lists the remaining triggered rules, specifying the action taken by the application. The rules are listed in the order of declining priority.