Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 11 replies
  • Answers 2 answers
  • Subscribers 28 subscribers
  • Views 23620 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Problem Cannot allow youtube only facebook

Rodney Altamera

Hi to All,

 

Good day. I need an assistance regarding my setup of Sophos XG 310 Firewall. I tried to block facebook and youtube and was able to by using application blocking. The problem is I created a specific rule for allowing certain IPs from accessing youtube but to no avail. I already removed all the firewall rules, placed it on top and still cannot make the firewall allow those users. Can anyone from this forum guide me to the right path. i tried to monitor using the Live connection in Current Activities but I don't understand why all web activity are passing thru same rule wherein I allow only certain users to access facebook.

Below are the details of the Sophos Firewall  version.

 

Here are all the other screenshots below.

 

here is the firewall rules sample.

 

 

 

 

 

Thanks.

 

 

Sincerely,

 

Rodney

 



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to lferrara

    Hi Iferrara,

     

    Good day. the problem is when i access facebook it will go thru the policy rule of allow youtube. But when I access youtube it goes thru the Default Network Policy. I am confused. Can you help me?

    Below is the screenshot of the Facebook passig thru the Allow Youtube Policy.

     

    Below is the youtube being blocked and passing thru Default Network Policy. This policy is where my youtube and facebook are blocked using application filter.

    Below is the policy Rule 12.

    Can you help me. I am confused.

     

    Thanks

     

    Rodney

  • 0 in reply to Rodney Altamera

    Rodney,

    inside the policy rule that allows Youtube, edit the Application filter and add Facebook.

    As I said, the first rule been matched, it used.

  • 0 in reply to lferrara

    Edit rule ID 23 and add Facebook inside the Application Filter > Edit > Add new Application. I mean this one:

    /cfs-file/__key/communityserver-discussions-components-files/129/3858.application_2D00_filter_2D00_policy_2D00_youtube.jpg

    Regards

  • 0 in reply to lferrara

    Hi Iferrara,

     

    Good day. Thanks for the response. I'll try to add and check. And give you a feedback once done. 

     

    Thanks.

     

    Rodney

  • 0 in reply to lferrara

    Hi Iferrara,

     

    I already added same rule for youtube and facebook in one firewall rule. Still youtube cannot be accessed. Below are some screenshots.

     

    The youtube is passing thru the Rule 12 which is at the bottom. This rule blocks youtube and facebook. The rule to allow facebook and youtube I configured as one still cannot access.

     

    Thanks.

     

    Rodney

  • 0 in reply to Rodney Altamera

    This looks like a DNS problem. Considering that this traffic is being flagged as UDP port 53 (which is DNS). Add the following LAN to WAN rule at the very top of all rules to allow DNS requests.

     

     

    Also make sure you are not blocking Video Hosting web category in your web filter policy.

  • 0 in reply to Muhammad Osama

    Hi Muhammad Osama,

    Thanks for your suggestions. I was actually able to solve my issue by changing the services in my allow facebook and youtube to any. The problem is based on what I have learned in Firewall basics you should only allow specific service in and out of the Firewall. Please check the screenshot below.

    Here are all the rules applied to my network. The first default rule is the one blocking all apps and websites not good for work.

    The screenshot above shows my default rule for blocking all traffic not related for office environment.

    The screenshot above shows the Rule wherein I only allow certain users to access facebook and youtube. I use IP host address to allow the users.

    Here is the screenshot of services configured as HTTP and HTTPS before and I changed to any. After that the youtube was working. It was only blocking users that are not included in the allowed users list.

    Are my settings correct? Am I doing this all wrong?

    I am using Application blocking to block sites and apps.

     

    Thanks for the support.

     

    Rodney