New to Sophos XG (migrated from UTM9) and need to allow some devices outbound

Question

I've migrated from UTM9 to the XG and need to allow a few devices to not get scanned http/s. My son's PS4 can't download updates to the games now that we've switched to XG. I need to basically bypass filters (or what ever is happening here). 
 I guess I need step by step instructions on how to add an exception so he can continue to play Fortnite. I've found another post but it wasn't step by step and I didn't know where some of the settings were. 
 The error they are getting on the PS4 (which may help others searching for this): 
 "HTTP status code : 416 ) (CE-40862-0)" 
 Error 416 seems to be due to the following issue: HTTP Error 416 Requested Range not satisfiable 
 thanks for your help! 
 Ed

EddieRock · Accepted Answer

Thanks for the super quick reply. that's exactly what I did but the rule has zero traffic and didn't seem to apply. It's at the top. 
 To verify the issue, I went into my default rule and deselected "Scan HTTP" and he can now download. This is temporary. 
 
 The rule at the top is like so: 
 Action: Accept 
 Source > Lan > Son's PS4 IP > Wan > Any > Allow 
 Scan HTTP is off 
 Intrusion Prevention is None 
 Web Policy is "Allow All" 
 Rewrite Source address is checked 
 Use Outbound Address is MASQ 
 Log Traffic is set 
 Here are some pics: