This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Log_Subtype Allowed override web policy.

Hi all,

Quick question if anyone knows where this entry is pulled from 'Log_Subtype="Allowed"

We have a standard web policy set to block unproductive cat's but some users appear to get access to sites marked as such as they have this 'Allowed' subtype on the firewall entry.. other users get denied as expected - seems no logical pattern to this I can see, users are not in multiple groups and the site is clearly marked on log as unproductive and keying to the correct web policy on that firewall rule..

Any help greatly appreciated.

This thread was automatically locked due to age.

Parents

0 FormerMember over 5 years ago

Hi Michael Coyle

Thank you for reaching out to the Community!

The Log_Subtype is an action such as Allowed/Denied. What is the current firmware version on your firewall?

Would it be possible for you to share firewall rule, web policy, and user detail via PM?

Thanks,
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 FormerMember over 5 years ago

Hi Michael Coyle

Thank you for reaching out to the Community!

The Log_Subtype is an action such as Allowed/Denied. What is the current firmware version on your firewall?

Would it be possible for you to share firewall rule, web policy, and user detail via PM?

Thanks,
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 Michael Coyle over 5 years ago in reply to FormerMember

Thanks, managed to find the examples this was ref to - although the primary classification of the site was 'Unproductive' the sub category on the web filter policy (eg Sports) was listed as allowed for anyone on policy in use.

Would have been handy if it told you on the entry 'what' sub category it was actually allowing is against rather than having to narrow it down using the policy tester.

Cheers Again.
Cancel
Vote Up 0 Vote Down

Cancel