Application filter does not work

Question

Hello friends. 
 In order for the APP Filter to work in Sophos XG, is it mandatory to enable the "Decrypt & scan HTTPS" option in the rule? Because I created a new application filtering policy, to block Proxy Tor and UltraSurf, but they are not blocking. Interesting that in Log View it appears as Denied, as if it were blocking, but the application works. 
 In the rule, I am leaving "Decrypt & scan HTTPS" unchecked. 
 In Sophos UTM for example, App Control works, without requiring https inspection. 
 Equipment model in question "XG210 (SFOS 17.5.3 MR-3)" 
 If anyone can help me, thank you!

FloSupport · Accepted Answer

Hi IvanildoGalvão 
 Thanks for reaching out. 
 Please take a look at the following articles to help you out with your setup: 
 
 Sophos XG Firewall / Cyberoam: Application filter recommended settings for better application detection 
 Sophos XG Firewall: How to block UltraVPN 
 
 In regards to scanning HTTPS and application control, take a look at Michael Dunn explanation here: https://community.sophos.com/products/xg-firewall/f/firewall-and-policies/104087/how-a-firewall-identify-an-application-when-we-have-https/379138#379138 
 Regards,