Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 8 replies
  • Subscribers 27 subscribers
  • Views 10216 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Custom application control rule not working in XG125

Amey A

Hello,

I am trying to add custom application control rule but it's not working.
I create custom rule to block torrents.
After applying this rule to #Default_network_policy I am still able to browser http/https torrent URL's.
But If I add 'YouTube block' rule it works.

2nd question is how can I apply multiple application control rules?
Do I need to create new 'Firewall Rule' for every application control rule?

Regards,
Amey.



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to Amey A

    Hi Amy,

    a simplistic setup to show you how.

    Application -> add application filter -> save it. This will create a shell for which in the next step you add the applications you wish to block

    Application -> application filter you created -> edit it and from there you can select by searching for named applications add them (tick) then save. This will only give you a small group (3) you will need to think about the names of other torrents.

    Ten you create a firewall rule and select the new application rule. Now you can either build a complex rule or create lots of simple rules for seperate firewall rules for each that are higher in the firewall list than your general access rule.

    I hope this makes sense?

    Ian

    Many edits to fix wrong information.

  • 0 in reply to rfcat_vk

    Thanks Ian. I was looking for this option.
    For now I have applied it to default network rule.


    1 more question.
    Is it possible that I can create a list of web-sites that I want to block?
    I mean where I'll create a simple text file which will contain keywords & URL of web-sites & attach that txt file in Sophos.

    Regards,
    Amey.

  • 0 in reply to Amey A

    Hi Amy.

    there is a default url group where you can add sites you want to block. As far as bulk  loading goes flosupport might be able to help?

    Ian

  • 0 in reply to rfcat_vk

    Yes many thanks.
    Found that option after going through those options.

    Now I am working on 'traffic shaping' for 'YouTube'.

    Regards,
    Amey.

  • 0 in reply to rfcat_vk

    Hello again Ian,

    I have configured traffic shaping for streaming media by following = community.sophos.com/.../123062

    Now the question,
    is it ok to edit default network rule & click on 'Apply Application-based Traffic Shaping Policy'? Thanks.

    Regards,
    Amey.

     
  • 0 in reply to Amey A

    Hi Amey

    you can edit any rule as you see fit. The default rule would have been created at installation time.

    Becareful with the QOS stuff, you really need a symmetrical external connection for it to work and make sure you do the conversion into kbits or mbits.

    Ian