Blocking upload is not working

Hi,

Where does your firewall rule sit in the firewall list, at the top?

Also are they using a web browser with an add-on or a seperate web page? If they are using a web browser add-on such as one of the ftp addons for firefox then you will need an application policy as well.

Ian

thanks dear, this is the only rule in the firewall,

no add-on, just normal uploading

Good morning,

you appear to be using an older version of XG, please update to the latest version then post all of your rule.

Basically if people can bypass your rule then there is something missing from the rule or they are using features that you are not seeing.

Also please post an extract from the log viewer showing the traffic going through your rule.

Ian

Thanks dear,

Actually I am using the latest version 17.1.2, I am testing it because on the previous versions I had the same problem.

I have one rule only which I posted, and I added another blocked category (Gaming&Gambling) to the same web policy to test if it is applied, and as you can see from the below images gaming sites are blocked but when uploading anything (for example here to dropbox) it is allowed, also I added a blocked file type (images) and it is not working too, user can download images from any size

the logs of dropbox uploading

You will need an application filter, dropbox is an application not a web site.mI have the games and gambles enabled, it at least stop MS games not sure what else it stops.

Ian

You will need an application filter, dropbox is an application not a web site.mI have the games and gambles enabled, it at least stop MS games not sure what else it stops.

Ian

Thanks,

Just to clarify dear the logs of dropbox is for opening dropbox site and uploading files using the web interface not the application installed on the computers

This is one example I have tried web mails, file transfer sites ...etc users can upload anything to the internet

I tried traffic shaping (per rule and per user) and limited the upload to 2KB and still users can upload files without problem

I only added games to check if the rule is working or not and as you can see the traffic goes through the rule but the upload and traffic shaping is is not working as they should be

I have added the following traffic shaping rule to limit the upload to only 1M but it seems that it is not applied too, users can still upload files >1M

So I am really confused now, did anyone manage to limit or block the upload successfully?

I have also added traffic shaping in Cloud Application for dropbox but without any success too

Remember when applying QOS that the XG is in KB, not kb so multiply all your values by 8. QOS is applied on a rule by rule basis.

Ian

I just added a block to dropbox in my url categories and web policies and I can no longer connect to dropbox, blocked by my site administrator.

Both url and application.

Ian

I don't want to block dropbox, I want to block uploading files to internet

I just give it as an example of how the "no upload" policy/category is not working

Again my problem is I want to prevent upload :( it is not working neither by using the web policy or by applying traffic shaping

I have one rule only on the testing firewall, I know the traffic shaping is applied rule by rule, and I noticed that it is B not b and I shared an example of how it is not working

can anyone help please, I've tried everything and it is not working

OK, So I created another traffic shaping rule (I gave up on web policy), this time I changed the Bandwidth usage type to "shared", the upload got very slow (actually everything went slow even google.com), but still users can upload whatever size they wanted

as side question what is the difference between shared and Individual on "Rule" based Traffic shaping rule? does Individual mean that the limit is going to be applied per service or per IP or per connection? also shared what? the whole traffic through the rule will be considered or what?

I aded dropbox as an example of how to block uploads.

Do you want to block uploads or do you want to size limit them?

You can't stop uploads because the users need to upload information to access urls, so what exactly are you trying to achieve?

Do you want to block file types, file sizes. There is a tab which allows user defined allowances.

QOS applies to rules unless yo u have set QOS to a user or a device.

You do not appear to have any coherent policies, maybe you need to call in a Sophos parter/reseller with expertise in configuring an XG.

Ian

Have you modified the httpupload rule to block http and https, but that doesn't stop ftp or proprietary applications that use their own ports. Also doesn't stop the use of VPNs to bypass your restrictions.

Looked at your original rule again and you have http and https in services, you will need your block rule at the top of your rule list without http and https as services.

Ian

I will have a play with web settings when I get exclusive use of my XG.

Hi,

I was wrong, nohttpupload works with http and https enabled in the service field, no application filter applied "none".

I tried to upload to one site only and failed as blocked by the XG administrator.

Ian