Introduction

When users request a website that they are not permitted to access, a block page appears in the browser.

Note: The block page does not display correctly for IPv6-only clients. The request is blocked, but the user receives a browser error rather than a block page. Dual-stack (IPv6 and IPv4) clients receive the block page as expected.

Block pages are constructed from HTML files, by default, made up of 3 main sections.

  1. The header explains that the site is blocked.
  2. The top frame contains a block message showing the requested URL and the reason the URL was blocked.
  3. The bottom frame presents any options available to the user, such as the option to go back to the previous page, or to click a Continue or Use Quota Time button to view the site.

If the site is blocked because it belongs to a category in the Security Risk class (see Risk classes), the block page has a special security banner.

With Forcepoint Web Security, Super Administrators can enable an enhanced version of the block page that includes a link to Forcepoint ACEInsight.

  • Enable the link on the Settings > General > Filtering page.
  • Users can click the link find more information about URLs blocked for security reasons.

Default block page files are included with your web protection software. You can use these default files or create your own custom versions.

Note: With the Hybrid Module, changes to the on-premises block pages do not affect hybrid block pages. See Customizing hybrid block pages.
  • Customize the default files to change the block message (see Creating Custom Block Pages).
  • Configure web protection software to use block messages (default or custom) hosted on a remote web server (see Using an alternate block page on another machine).