Blocked Websites Report

Applies To: Cloud-managed Fireboxes, Locally-managed Fireboxes

The Blocked Websites report shows a summary of the websites denied by WebBlocker.

This report is available when log messages with data for this report exist in the specified time frame. To make sure that your Firebox sends log messages required to generate this report, follow the steps to Enable Logging for this Report.

How to Use this Report

This report can help you identify websites that your users attempt to access that are denied by your WebBlocker configuration. Here are some ways to use this report:

  • Select the Categories pivot to see the website categories that WebBlocker denies most often.
  • Select the Client pivot to identify the clients on your network that request the most websites in denied categories.
  • In the Detail report, review the Destination column for the IP addresses of any websites you have identified as false positives. You can add WebBlocker exceptions for sites that WebBlocker denies that you want to allow access to.
  • In an audit, you can use the report data to demonstrate compliance with rules that require you to block specific web content.

View the Report

This report is available in WatchGuard Cloud and in Dimension.


You can use pivots to change the view of the data on the report.

To switch to a different view, select a pivot from the drop-down list above the report.

This report includes these pivots:


Summary of the websites denied by WebBlocker, organized by WebBlocker category.

Activity Trend

Summary report of a trend of the total requests in relation to the number of denied websites.


Summary of the number of requests denied by WebBlocker, organized by client.

Detail View

To view a detailed report of all websites denied by WebBlocker, click View Details at the top of the report.

Screen shot of View Details link in a report

The Blocked Websites Detail report includes a row for each website denied by WebBlocker and displays this information:

Column Description
Event Time Date and time WebBlocker denied access to the website
Category WebBlocker category the website is assigned to
Client IP address of the traffic source
Policy Name of the Firebox policy that examined the traffic
Disposition Action taken by the Firebox for this traffic, such as Allowed or Denied
Destination IP address of the denied website
Hits Number of hits

If the Firebox is unable to connect to WebBlocker Cloud or if the user entered the passphrase for a WebBlocker Override or clicked Accept when a site matched a Warn action, the Category column might show (none) or an empty value ("").

Enable Logging for this Report

Logging for cloud-managed Fireboxes is automatically enabled. For locally-managed Fireboxes, you must manually enable logging in Fireware Web UI or Policy Manager. For more information, see Set Logging and Notification Preferences.

To collect the data required for this report for locally-managed Fireboxes, in Fireware Web UI or Policy Manager:

  • In all WebBlocker actions, select the Log check box for all categories and select the When a URL is uncategorized, Log this action check box. For more information, see Configure WebBlocker Categories.

See Also

WatchGuard Cloud Device Reports List