I have IPS working and scanning HTTP and HTTPS traffic. Using the EICAR test files (http://www.eicar.org/85-0-Download.html) I get a blocked warning from the XG firewall on Chrome for all 8 variants of the malware test file. On the Edge browser I get Windows Defender messages for all the HTTP sources of malware. I get a brief flash of the Sophos XG message for the .com and .com.txt versions of the file on HTTPS and then the Windows Defender warning. For the 2 HTTPS zip files I get only the Sophos XG warning.
Any ideas on the difference in behaviour? I can browse HTTPS websites in both browsers so I think I have the right certificates in place.
This thread was automatically locked due to age.
