Sorry for the delay. I had to look further into the Overrides. I must say that documented instructions and the pages on the FG were pretty confusing for me as they didn't seem to track.
I've tried to explain this but let me give some background as to what I've been doing and am trying to do;
- We have been using a firewall with very similar web filtering categories - and we have been using them.
- We had a few sets of categories for User Groups such as Managers, Non-Managers, Buyers, etc. We set ALLOW and BLOCK in each category set to suit those group's needs and permissions.
Then, as time went on, we found that some of those User Groups were being blocked on specific URLs as a result of the assigned category list and permissions.
Now, we didn't want to change the category settings en masse for two reasons:
1) We had already gone to the trouble to set them up and they were working OK.
2) We realize that they are *dynamic* and subject to change regarding URLs embedded within them (which is kept secret from us). This begs for ALLOWing the needed URLs up front.
So, rather than dealing with all that, we simply created what we called "whitelists" for each User Group and added critical URLs, being blocked in the Categories, to support their business needs as they came up. This was clearly important to operations but didn't come up very often. We now have those lists based on real world experience.
I really don't want to make setting "items" for each of those special URLs. I much prefer to enter each list into a static URL list or, possibly, into a Custom Category if that approach makes sense. So far, I've not found how to do that in the Overrides.