Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 26 subscribers
  • Views 6956 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Permission group and users in web protection

Cpsilva

Hello,

  I am planning the installation of Sophos XG and I next need. I have a doubt.

I have the 192.168.40.0/24 network and own groups of internet access as ADM1, ADM2, ADM3. Each group has a type of internet access.

Active Directory have created groups and added users.


I need to create a firewall rule allowing access to the internet for each group?

Thank you.



This thread was automatically locked due to age.
Parents
  • 0

    Hi Christovam,

    Create a unique Firewall Rule for each group and define the required filter policy in it. 

    Which authentication method do you use with XG? Please post a screenshot of the FW rule after configuration.

    Thanks

  • 0 in reply to sachingurung

    Hi sachingurung,

    Objects: 

    GRP_NAVECACAO = ports 80 and 443.

    #LAG_LAN.100 = Vlan ID 100 and Network 192.168.40.0/24

    I set up the rules as comments. Each group has a different access profile. Thus work?
    Is there a way to simplify this?

    Thanks.

  • 0 in reply to Cpsilva

    Hi Christovam,

    I see that there is 0 traffic in/out through the configured FW rules. I guess the User's are not authenticated over XG which mandates the traffic to flow through the default allow rule. What is the position of the FW rules in Top-Bottom order? The configurations are correct and if you are trying a block on HTTPS websites then enable HTTPS scan inside the FW rule.

    Thanks

Reply
  • 0 in reply to Cpsilva

    Hi Christovam,

    I see that there is 0 traffic in/out through the configured FW rules. I guess the User's are not authenticated over XG which mandates the traffic to flow through the default allow rule. What is the position of the FW rules in Top-Bottom order? The configurations are correct and if you are trying a block on HTTPS websites then enable HTTPS scan inside the FW rule.

    Thanks

Children
No Data