Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 12 replies
  • Subscribers 29 subscribers
  • Views 14590 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Facebook Iphone App not working after update

Gregor Ulrich

Cheers guys,

 

i'm experiencing problems with my sophos xg home edition and my facebook iphone app.

Since i updated the sophos to last release SFOS 17.0.5 MR-5 the facebook app will not work when i have ssl decryption enabled.

The sophos cert for decryption is installed and activated on my iphone.

on my macbook in safari the https decryption works fine on the facebook site.

When i turn off https decryption the app will work.

In the logviewer i can see that traffic to facebook is allowed but it has no out interface (port2 to the internet).

 

Is someone experiencing same problems?

 

i know i can write a rule to skip decryption for my iphone or for facebook. 

but i don't want to ;)

 

thanks for your help



This thread was automatically locked due to age.
Parents
  • 0

    so maybe this log entry will help:

     

    2018-02-24 22:19:39

    Firewallmessageid="00001"

    log_type="Firewall"

    log_component="Firewall Rule"

    log_subtype="Allowed"

    status="Allow"

    con_duration="10"

    fw_rule_id="2"

    policy_type="1"

    user=""

    user_group=""

    web_policy_id="13"

    ips_policy_id="5"

    appfilter_policy_id="6"

    app_name="Facebook Website"

    app_risk="3"

    app_technology="Browser Based"

    app_category="Social Networking"

    in_interface="Port1"

    out_interface=""

    src_mac="00: 0:00: 0:00: 0"

    src_ip="192.xxx.xx.101"

    src_country="R1"

    dst_ip="185.60.216.15"

    dst_country="IRL"

    protocol="TCP"

    src_port="53930"

    dst_port="443"

    packets_sent="5"

    packets_received="6"

    bytes_sent="708"

    bytes_received="259"

    src_trans_ip=""

    src_trans_port="0"

    dst_trans_ip="192.xx.xx.1"

    dst_trans_port="3128"

    src_zone_type="LAN"

    src_zone="LAN"

    dst_zone_type="WAN"

    dst_zone="WAN"

    con_direction=""

    con_event="Stop"

    con_id="3533249024"

    virt_con_id=""

    hb_status="No Heartbeat"

    message=""

    appresolvedby="Proxy"

  • 0 in reply to Gregor Ulrich

    Hi,

    you can put an exception in for facebook. You will need to search the forums for a list sites for the exception list.

    What happens if you connect  to facebook away from home and then try again when you get home?

    Ian

  • 0 in reply to rfcat_vk

    Hi Ian,

     

    thanks for your reply. is there maybe a way to disable decryption specifically for this app? maybe in the console?

     

    when i turn off wlan and open facebook new feeds show up. when i turn wlan againg ( maybe wait 10 minutes for new entries) the app shows only the older entries.

    when i want to watch my friendlist, the app says i have no friends xD

     

    cheers

  • +1 in reply to Gregor Ulrich

    Hi Gregor,

    facebook has many sub urls so excluding facebook will not work.

    Run a google search for all facebook sites, you will need to add those to your web exception.

    Ian

  • 0 in reply to rfcat_vk

    Hi Ian,

     

    yeah i know. i just wanted to find out if there is maybe any missclassification or something wrong with application filtering.

    i checked right now facebook messenger and this works on my iphone. but before the update it was the messenger that did not work.

    thats a bit funny. 

     

     

    thanks again for your help.

    appreciate that

  • 0 in reply to Gregor Ulrich

    I have trouble with my ipad and mac books every so often they will not connect ot the App store.

    I can fix it but not very securely.

    Ian

  • 0 in reply to rfcat_vk

    rfcat_vk said:
    I have trouble with my ipad and mac books every so often

     

    I added an exception for HTTPS and Policy checks for apple.com and apple.com.au and it seems to fix it. Not sure if its safe but I have 75 iOS devices now connecting :-)

  • 0 in reply to M8ey

    Hi Ian,

    there is a default apple exception list, but it never seemed to work, but maybe you apple.com.au might be the secret?

    Ian

Reply Children
  • 0 in reply to rfcat_vk

    Hey Ian,

     

    Yes I found that default list only had apple.com where as if you are down under it probably sends to direct to a .com.au which wasn't working. I added that exception and instantly the App Store was aliiiivveeeeee

  • 0 in reply to M8ey

    Hi Ian,

    sounds like a problem (bug) with the XG's regex interpretation because the bit at the end is supposed to cover that. Could also explain why the rule I built worked because I wasn't using regex.

    I have added and now have wait until nothing happens. Well done.

    Ian