Required components:

1. Deep Traffic Analysis Platform (DPI)

Advantages:

1. Easy to use:
   1. all rules are applied at one place: on DPI platform;
   2. the platform loads and applies rules from lists by itself.
2. Productivity:
   1. the list includes up to 4 billion URL. Its representation in memory is compressed;
   2. provides filtering of up to 2 million URL per second on one CPU kernel;
   3. traffic capacity up to 40 Gb per second per one CPU;
   4. unlimited scaling by simple installation of additional servers;
   5. propagation delay is less than 30 μs.
3. Functionality:
   1. http and https support. Other protocols can be added;
   2. filtering for HTTP proxy is supported (including Opera Turbo/Mini);
   3. the software can consider or ignore the port number (i.e. block http://www.example.com и http://www.example.com:8080 together or separately);
   4. does not depend on IP address changes;
   5. redirection instead of blocking is supported for http;
   6. incapsulation of VLAN, QinQ, MPLS is supported;
   7. support of asymmetric traffic routes, including processing of outbound traffic only;
   8. support of mirrored traffic;
   9. provides many other useful capabilities, unlike dedicated filtering solutions.
4. "Four nine's" reliability:
   1. works 24×7 with no breaks and service delays;
   2. uptime of the systems already installed is many months;
   3. the Bypass mode is supported to calm the operator.
5. Cost saving:
   1. DPI runs on a general purpose computer;
   2. support costs are almost zero - everything is automated;
   3. no need to waste money and time to develop and support own solution;
   4. a proxy hardware would cost much more to achieve the similar traffic capacity.