Sophos Firewall

Discussions edgedl.me.gvt1.com

Sophos Firewall requires membership for participation - click to join

Thread Info

State Suggested Answer
Locked Locked
Replies 9 replies
Answers 1 answer
Subscribers 33 subscribers
Views 5157 views
Users 0 members are here

Options

Suggested

This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

edgedl.me.gvt1.com

Gangababu Barla over 2 years ago

Found suspicious user access found in our scanned alert, kindly let us know what's the impact of this URL

This thread was automatically locked due to age.

Top Replies

Peter-Paul Gras over 2 years ago +2 suggested

You can read more here: www.systemtek.co.uk/.../

0 rfcat_vk over 2 years ago

Please provide more details as to where this appears in XG?
ian

XG115W - v19.5.1 mr-1 - Home

If a post solves your question please use the 'Verify Answer' button.
Cancel
Vote Up 0 Vote Down

Cancel
0 Vivek Jagad over 2 years ago

Hey Gangababu Barla ,

Thank you for reaching out to the community, currently the following site - edgedl.me.gvt1.com is categorized in "Information technology"
If you think this is wrongly categorized then you may considering your request here - https://support.sophos.com/support/s/filesubmission?language=en_US

Thanks & Regards,
_______________________________________________________________

Vivek Jagad | Team Lead, Global Support & Services

Sophos Community | Product Documentation | Sophos Techvids | SMS
If a post solves your question please use the 'Verify Answer' button.
Cancel
Vote Up 0 Vote Down

Cancel
0 Peter-Paul Gras over 2 years ago

You can read more here: www.systemtek.co.uk/.../

SFVH (SFOS 19.5.1 MR-1-Build278) - Last (re)boot on Februari 20 2023

Asus H410i-plus - Pentium 6605 Gold - 250GB M.2 PCIe NVMe SSD - 8GB - 3 ports

[If any of my posts are helpful to you please use the 'Verify Answer' link]
Cancel
Vote Up +2 Vote Down

Cancel
0 BrushTech over 2 years ago

Do you have Zero-day protection enabled? I have these show up in there ALL THE TIME. It's google services (chrome, android). I've reported it and asked how to exempt or hide this site and haven't heard anything back. Fun stuff.
Cancel
Vote Up 0 Vote Down

Cancel
0 Firestone over 2 years ago in reply to BrushTech

I would love to have a Solution too. Excactly the same behavior
Cancel
Vote Up 0 Vote Down

Cancel
0 Wendell Lovewell over 2 years ago in reply to Firestone

Almost 10% of my syslog entries are to "edgedl.me.gvt1.com". I don't want to break Chrome, but this is ridiculous!
Cancel
Vote Up 0 Vote Down

Cancel
0 alan weir over 2 years ago in reply to Wendell Lovewell

Does creating a regex entry in the webfilter exemptions work?

^([a-zA-Z0-9.-]*\.)?gvt1\.com\/
Cancel
Vote Up 0 Vote Down

Cancel
0 Wendell Lovewell over 2 years ago in reply to alan weir

Thanks Alan. I'm not knowledgeable enough to say--I don't know where to set up a "webfilter exemption". But even if I did, I don't want to prohibit them at the firewall level. What I'd like is to track down the culprits and fix them if possible.
Cancel
Vote Up 0 Vote Down

Cancel
0 alan weir over 2 years ago in reply to Wendell Lovewell

Sorry, I meant webfilter exception. The web filter log should tell you the IP address of the device that it is coming from.

Allow websites using URL groups. support.sophos.com/.../KB-000036901
Cancel
Vote Up 0 Vote Down

Cancel