NxFilter Tutorial
Tutorial Index

GUI - Config
These are mostly system-wide settings for NxFilter.


Config > Setup > Block and Authentication
- Block Redirection IP
This is the IP address of NxFilter itself. If there is a blocked DNS request, it will be redirected to this IP address. Normally, it will be populated automatically during the installation process.

When you use clustering, you can add multiple block redirection IP addresses separated by commas for redundancy.

- Enable Authentication
After you enable this option, any unauthenticated user will be redirected to NxFilter's login page.

- Login Domain
You can access NxFilter's login page using a domain defined here.

- Logout Domain
You can clear out a user login session using a domain defined here.

- Login Session TTL
NxFilter keeps a login session after a user login. But this login session needs to be expired eventually. It is especially required when there is a shared PC by several users. If a user doesn't make any DNS request for the specified amount of time defined here, his/her login session will be expired and the user needs to login again.

- Disable Login Redirection
With this option enabled, NxFilter doesn't do login redirection. All the DNS packests from unauthenticated users will be dropped. This option is for hiding your server from attackers when you deploy your server on the Internet.


Config > Setup > Syslog
NxFilter supports Syslog exportation of its log data. You can build your own reporting system with this feature or you can monitor all the logging in a real-time manner.

- Syslog Host
The host IP address to which you want to send your log data.

- Syslog Port
UDP port of a target host.

- Export Blocked Only
With this option, NxFilter sends the log data of blocked DNS request only.

- From Each Node
At default, Clustered NxFilter sends Syslog data only through its master node. When you enable this option, each node exports its own data.

- Enable Remote Logging
Enable Syslog exportation.


Config > Setup > NetFlow
NxFilter supports bandwidth control. It is possible by importing NetFlow data. To find out more, read Bandwidth control with NxFilter.

- Router IP
The IP address of a device sending NetFlow data to NxFilter.

- Listen Port
The UDP port number of NetFlow collector.

- Run Collector
Run NetFlow collector. After change this option, you need to restart NxFilter.


Config > Setup > Misc
- Admin Domain
You can access NxFilter admin GUI using a domain defined here. For example, if you use 'admin.example.com' as your admin domain you can access your admin GUI by typing 'http://admin.example.com/admin' into your browser address bar.

This only works when you use NxFilter as your DNS server.

- Bypass Microsoft Update
You don't want to block Microsoft update with your filtering. Enabling this option means bypassing '*.microsoft.com' and '*.windowsupdate.com'.

- Logging Retention Period
If you keep your log data too long it may cause a disk space problem. You can set how long NxFilter keeps its log data here.

- SSL Only to Admin GUI
When you want to allow HTTPS access only to your admin GUI, enable this option.

- Auto Backup
NxFilter makes a backup file for its configuration into /nxfilter/backup directory on 01:00 everyday. The name of the backup file starts with 'auto-' prefix. You can have up to 30 backups.


Config > Admin
You can change admin name and password for GUI login here.

- Client Password
The password for CxBlock setup page.

- Report Password
The password for a report manager to access logging/reporting related menus on GUI.

After you set 'Report Password' you can create this kind of link,

    http://192.168.0.100/admin?rpw=pass1234

When you click the link, you will acquire the permission to view everything under 'Logging' and 'Report' and will be forwarded to 'Report > Daily'
Config > Alert
NxFilter sends an email for recent blocking or access violation. If you want to send an alert email to 'admin @ example.com' from 'alert200 @ gmail.com' every 15 minutes then the setup would look like the below.

  • Admin Email : admin @ example.com
  • SMTP Host : smtp:gmail.com
  • SMTP Host : 465
  • SMTP SSL : on
  • SMTP User : alert200
  • SMTP Password : ********
  • Alert Period : Every 15 minutes

When you set this up, NxFilter also sends alert emails for system related incidents. But 'CC Recipients' is only for access violation or blocking on filtering.
You can set up the categories you want to get alerted with when a domain gets blocked.


Config > Allowed IP
NxFilter has an IP based access restriction for its DNS, GUI, login redirection.


Config > Backup
You can create and download a backup file for the current configuration of NxFilter.


Config > Block Page
You can set up your own block page, login page, welcome page. When you edit your block page you can use the following variables populated by NxFilter for making your block page more informative.

  • #{domain} : Blocked domain
  • #{reason} : Reason for block
  • #{user} : Logged-in username
  • #{group} : Groups of the logged-in user
  • #{policy} : The applied policy
  • #{category} : Categories of the blocked domain


Config > Cluster
NxFilter has a built-in clustering. You can make your NxFilter to be a master node or a slave node in a cluster. After you change the values in cluster setup you need to restart NxFilter to apply the new settings. To find out more about clustering, read Clustering with NxFilter