Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 2 replies
  • Answers 1 answer
  • Subscribers 26 subscribers
  • Views 5513 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Problem with web filter policy

FWsoph

I want to allow a specific  web category for my whole users

the problem is that when I create a web filter policy to add that category, I have to choose a template, all the template with a default action Allow except one with a default action deny

so if I choose a template with a default action allow it will open every thing to my users except what I add to deny

and if I choose a template with a default action deny, it will block everything except what I add to allow

If I add this policy to a user policy, it will be the only policy that will apply because it mach everything with action allow all except or deny all except

and the other policy for the same user will not take effect because it is lower than that one



This thread was automatically locked due to age.
Parents
  • 0

    Hi,

    Sophos XG follows a Top-Down approach while matching a security policy. If you are trying to block gaming for a User, you just need to define the particular category as Deny with a web filter policy. By default, all the categories except the denied one will be allowed. I think you are configuring a policy with everything allowed and then denying one category. Correct me if I misunderstood somewhere. 

    Thanks

  • 0 in reply to sachingurung

    thanks for your reply

    yes I know the order of the policy

    but in my situation I have 10 sub nets in my LAN and each one has its own policy that is deny some categories deffer than the other sub nets

    all the 10 sub nets are blocked to access Skype

    but I have about 5 users in each sub net needs to access Skype

    so if I create one policy and put the 50 Users "5 from each sub net" in it and Allow Skype for them, this policy either open all sites include Skype or deny all sites except Skype

    so how can I do that

Reply
  • 0 in reply to sachingurung

    thanks for your reply

    yes I know the order of the policy

    but in my situation I have 10 sub nets in my LAN and each one has its own policy that is deny some categories deffer than the other sub nets

    all the 10 sub nets are blocked to access Skype

    but I have about 5 users in each sub net needs to access Skype

    so if I create one policy and put the 50 Users "5 from each sub net" in it and Allow Skype for them, this policy either open all sites include Skype or deny all sites except Skype

    so how can I do that

Children
No Data