Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 29 subscribers
  • Views 448 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos XG 135

kaijie tan

Hi all experts, 

Need some advice on Sophos XG 135 web filtering tips. 

Please kindly bear with me, as i am very green in handling Sophos products. 

For the Web filtering, is there anyone that can guide me or point me in the direction, whereby i will wish to do content filtering base on 3 groups. 

Group 1 -  Block Social media. 

Group 2 -  Block streaming (youtube / netflix etcc..)

Group 3 - Allow all web access. 

my boss is asking me to set this up, so some employee will not be able to access social media, but able to access streaming, some employees, will not be able to access both, some will not be able to access streaming but able to social media. So is something like that. 

How easy or difficult is it to archive this.

Thanks.  



This thread was automatically locked due to age.
Parents
  • 0

    You need to start with authentication. Get the user information from AD. Then you can use this to build three Independent firewall rules with those groups and allow/deny as you wish. This will likely work for Windows etc. But mobile on the other hand will be a harder concept. (Especially as modern employees simply move to LTE to access everything). Would discuss this for mobile device again with your boss, if this is actually a good idea, because people move to LTE will consume there LTE, which maybe the boss will actually not be consumed in 10 days and people cannot work anymore remotely. 

Reply
  • 0

    You need to start with authentication. Get the user information from AD. Then you can use this to build three Independent firewall rules with those groups and allow/deny as you wish. This will likely work for Windows etc. But mobile on the other hand will be a harder concept. (Especially as modern employees simply move to LTE to access everything). Would discuss this for mobile device again with your boss, if this is actually a good idea, because people move to LTE will consume there LTE, which maybe the boss will actually not be consumed in 10 days and people cannot work anymore remotely. 

Children
  • 0 in reply to LuCar Toni

    Hi LuCar Toni, 

    Thanks, which means i will need to join or sort of joining the Firewall to the AD first, create groups at AD level, import to Firewall, then from there work out the rules. 

    Just to ask, do i need to setup any proxy authentication for this? 

    Thanks for your advise.