Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 12 replies
  • Subscribers 29 subscribers
  • Views 14590 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Facebook Iphone App not working after update

Gregor Ulrich

Cheers guys,

 

i'm experiencing problems with my sophos xg home edition and my facebook iphone app.

Since i updated the sophos to last release SFOS 17.0.5 MR-5 the facebook app will not work when i have ssl decryption enabled.

The sophos cert for decryption is installed and activated on my iphone.

on my macbook in safari the https decryption works fine on the facebook site.

When i turn off https decryption the app will work.

In the logviewer i can see that traffic to facebook is allowed but it has no out interface (port2 to the internet).

 

Is someone experiencing same problems?

 

i know i can write a rule to skip decryption for my iphone or for facebook. 

but i don't want to ;)

 

thanks for your help



This thread was automatically locked due to age.
Parents
  • 0

    so maybe this log entry will help:

     

    2018-02-24 22:19:39

    Firewallmessageid="00001"

    log_type="Firewall"

    log_component="Firewall Rule"

    log_subtype="Allowed"

    status="Allow"

    con_duration="10"

    fw_rule_id="2"

    policy_type="1"

    user=""

    user_group=""

    web_policy_id="13"

    ips_policy_id="5"

    appfilter_policy_id="6"

    app_name="Facebook Website"

    app_risk="3"

    app_technology="Browser Based"

    app_category="Social Networking"

    in_interface="Port1"

    out_interface=""

    src_mac="00: 0:00: 0:00: 0"

    src_ip="192.xxx.xx.101"

    src_country="R1"

    dst_ip="185.60.216.15"

    dst_country="IRL"

    protocol="TCP"

    src_port="53930"

    dst_port="443"

    packets_sent="5"

    packets_received="6"

    bytes_sent="708"

    bytes_received="259"

    src_trans_ip=""

    src_trans_port="0"

    dst_trans_ip="192.xx.xx.1"

    dst_trans_port="3128"

    src_zone_type="LAN"

    src_zone="LAN"

    dst_zone_type="WAN"

    dst_zone="WAN"

    con_direction=""

    con_event="Stop"

    con_id="3533249024"

    virt_con_id=""

    hb_status="No Heartbeat"

    message=""

    appresolvedby="Proxy"

  • 0 in reply to Gregor Ulrich

    Hi,

    you can put an exception in for facebook. You will need to search the forums for a list sites for the exception list.

    What happens if you connect  to facebook away from home and then try again when you get home?

    Ian

  • 0 in reply to rfcat_vk

    Hi Ian,

     

    thanks for your reply. is there maybe a way to disable decryption specifically for this app? maybe in the console?

     

    when i turn off wlan and open facebook new feeds show up. when i turn wlan againg ( maybe wait 10 minutes for new entries) the app shows only the older entries.

    when i want to watch my friendlist, the app says i have no friends xD

     

    cheers

  • +1 in reply to Gregor Ulrich

    Hi Gregor,

    facebook has many sub urls so excluding facebook will not work.

    Run a google search for all facebook sites, you will need to add those to your web exception.

    Ian

Reply Children