Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 2 replies
  • Subscribers 28 subscribers
  • Views 1203 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Web Protection, where did I go wrong ?

Justatech

Hi, 

I tried to configure web protection like described in many tutorial like this one:

https://community.sophos.com/kb/en-us/126290

I did it almost the same except I did not tick “match known users”.

The result is that my rule allows anything: ports like POP, SMTP, ping goes through the rule as long as I configure it for any port.

Could someone please tell me where did I miss something?



This thread was automatically locked due to age.
Parents
  • +1

    Hi,

    what are you trying to achieve?

    That KBA has any in the allowed protocols, which is what you are seeing.

    If you want to use the http proxy, then enable scan http and if you instal your XG certificate on your local devices you can enable HTTPS scanning. In the allowed protocols you add http and https.

    Your web and application policies affect the sites you are trying to access, not the outgoing requests from your LAN devices.

     

    Ian

  • 0 in reply to rfcat_vk

    Thanks Ian,

    I was confused by the documentation as its stats that protocol shall be left to “any”.

    I was thinking that configuring a rule with a web policy might limit the traffic to some sort of service pool.

    I Will restrict the rule to HTTP and HTTPS.

     

    Many thanks.

Reply
  • 0 in reply to rfcat_vk

    Thanks Ian,

    I was confused by the documentation as its stats that protocol shall be left to “any”.

    I was thinking that configuring a rule with a web policy might limit the traffic to some sort of service pool.

    I Will restrict the rule to HTTP and HTTPS.

     

    Many thanks.

Children
No Data