Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 3 replies
  • Subscribers 28 subscribers
  • Views 6707 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Removed all Ad Blocks and web scans in XG 17 and the wall still blocks ads and my AV keeps asking to accept the SOphos HTTPs cert

Pickle Rick

So I have removed all web scans and blocks in the firewall rule and yet the wall is blocking ads and my AV keeps asking to allow the Sophos cert...why?  I mean if I am not doing HTTPS scanning and why is sophos injecting it's cert into the traffic?



This thread was automatically locked due to age.
Parents
  • +1

    Hey  

    Could you please verify that your web traffic is utilizing this specific firewall rule via the "Packet Capture" tool from "Diagnostics".

    Thanks,

    FloSupport | Community Support Engineer

  • 0 in reply to FloSupport

    Thank you...coming from SG I didn't know this existed.  Ok I have pinpointed the problem and it's basically a correct blocking by presenting a wrong reason why it's blocked.

     

    The reason is says why it's blocked is: Proxy Sites

     

    The real reason it's being blocked: That specific country is in my block nation list.    

     

    I wish I could get an error stating that it's due to a nation blocking and not site blocking, since that way I will know where to hunt/look otherwise I am chasing a wild goose. 

Reply
  • 0 in reply to FloSupport

    Thank you...coming from SG I didn't know this existed.  Ok I have pinpointed the problem and it's basically a correct blocking by presenting a wrong reason why it's blocked.

     

    The reason is says why it's blocked is: Proxy Sites

     

    The real reason it's being blocked: That specific country is in my block nation list.    

     

    I wish I could get an error stating that it's due to a nation blocking and not site blocking, since that way I will know where to hunt/look otherwise I am chasing a wild goose. 

Children
  • 0 in reply to Pickle Rick

    Unfortunately I think that we are able to do at the moment.  What is occurring is that the firewall is choosing to block you (country blocking is in firewall rules) and then telling the web proxy to do a generic block.  The web proxy doesn't know the reason is country blocking, the only thing it can do is show a generic block page - which in our case is a category block.  This is essentially the same thing as if you created a firewall rule with a web policy of "Deny All" - you would get a category block page.

    I don't know enough about country blocking to know if what appears in the logs.  There may be a way to track it down there.