Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 28 subscribers
  • Views 1022 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Apple updates

Eduardo Noubleau

Hello,

I have some users on my LAN trying to update their MacBooks pro (everyone with the HTTPS decrypt enabled), but they are having troubles.

Can someone tell which https decryption exception should I add, so they can update their MacBooks? And even, the iCloud page it's not working (I think it's for the same reason).

Thanks!



This thread was automatically locked due to age.
  • 0

    Hi,

    you need a to set an exception for all Apple addresses, basically you need a rule for your apple devices to access the apple sites, I use a rule without the HTTP or DPI. The Apple sites are nearly all based on 17.0.0.0/8 so I have an entry allowing my apple devices access to this address range.

    Ian

    XG115W - v19.5.1 mr-1 - Home

    If a post solves your question please use the 'Verify Answer' button.

  • 0
    I use 
    ^([A-Za-z0-9.-]*\.)?apple\.com\.?/
    ^([A-Za-z0-9.-]*\.)?cdn-apple\.com\.?/
    ^([A-Za-z0-9.-]*\.)?mzstatic\.com\.?/
    ^([A-Za-z0-9.-]*\.)?apple\-cloudkit\.com\.?/
    ^([A-Za-z0-9.-]*\.)?icloud\-content\.com\.?/
    ^([A-Za-z0-9.-]*\.)?icloud\.com\.?/
    ^([A-Za-z0-9.-]*\.)?iicloud\-sandbox\.com\.?/
    My firewall rule destination networks is set to 17.0.0.0/8 and also to updates.cdn-apple.com
  • 0 in reply to Brian1941

    Hi,

    i think you mage a typing mistake with the apple address, 17.0.0.0/8.

    Please post a copy of your firewall rule.

    ian

    XG115W - v19.5.1 mr-1 - Home

    If a post solves your question please use the 'Verify Answer' button.

Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?