Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 21 replies
  • Subscribers 31 subscribers
  • Views 50632 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

default web policy "NO GAMES ADS OR EXPLICITI CONTENTS" didn't deny access to porn web sites

Hani Omar

Dear 

i have problem that all porn sites working and SOPHOS didnt deny it, please let me know how i can use defoult web policy "NO GAMES ADS OR EXPLICITI CONTENTS" to deny access to porn web sites

 

 

 

 

thanks in advance



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to Ashen1

    dear 

    i will do it 

     

     

     

    after rebooting  still i face same problem and SOPHO pass porno website :(

     

     

     

     

    :( i dont know what i can do :(

  • 0 in reply to Hani Omar

    hi,

     

    can you please check if you are able to connect to the ff:

     

    primary.wing.sophosxl.net
    peak.wing.sophosxl.net

     

    under Monitor Analyze > Diagnostics > Tools 

     

    you can check if your Firewall and DNS settings were able to resolve those hostnames given above.

     

    Let us know of the results.

     

    Regards,

    Rap

  • 0 in reply to Hani Omar

    hi brother 

     

    i did what you say, and below my results

     

     

  • +1 in reply to Hani Omar

    Hi, 

     

    can you try changing one of your XG's DNS servers to 8.8.8.8 ?

     

    Let us know how it goes.

     

    Regards,

    Rap

  • 0 in reply to Hani Omar

    :(

    iam already use 8.8.8.8

    and i changed it to be in the frist with no result as u will see below 

     

     

     

     

     

    i waste your time iam sorry for that, but please forgive me its frist time to me to use this product but its very complicated to me and i cant do any thing and i feel that i waste your time with nothing again forgive me, may be its certificate issue and its required configuration the problem is i dont know how to remove or correct https warning message for sophos :(

  • 0 in reply to Ashen1

    Hi,

    I think I can see the problem. None of the rules have access rule enabled.

    Turning on the feature in the application page does not cause it to be applied to any rule. You need to add that selection in your rule along with your IPS settings. The rule needs to be the top one in the selection process for general access.

    Ian

  • 0 in reply to rfcat_vk

    dear 

    can you give me more details how i can do this instruction becouse iam still new in sophos and i cant understand what do you meant with "Turning on the feature in the application page does not cause it to be applied to any rule. You need to add that selection in your rule along with your IPS settings. The rule needs to be the top one in the selection process for general access"

     

     

  • 0 in reply to Hani Omar

    Hi,

    I can see I was wrong in my statement about nothing being enabled, that wasn't obvious when I looked the first time, the screen shot seems to have increased in size.

    Further you will need to enable micro checking (not the correct term) in your application page. Your LAN -> WAN needs to be at the top of the list. Rule numbers only tell you in which order the rule was created not about how they are applied.

    Also you need a reject rule at the bottom to drop all outgoing traffic that fails other rules.

    How are you authenticating your users?

    Sorry for what seem to be incomplete answers, I am holidays and don't have access to my XG.

  • 0 in reply to Hani Omar

    Hi Hani,

     

    Can you please move the LAN-->Internet Rule at the very top of your firewall policies

     

    Let us know how it goes.

     

    Thanks,

    Rap