[7.470][BUG][NOTABUG] http in standard mode fails to

pickup port 80. Even though port 80 is shown in the http allowed list the proxy allows port 80 to go straight through to the packet filter.

I think this is a duplicate report, but I can't find the original.

Ian M

Parents

0 BAlfson over 16 years ago

Hey, Ian,

Doing it with packet filter rules certainly works: 'Internal (Network) -> [80,443] -> [203.206.0.0/16]'.

I only made the HTTP/S suggestion because I was looking for more input on an overall theory for implementing Web Security. My current thinking is that the base/default always should be in transparent mode, and that it should include the strictest limitations. I don't feel like I've tested that idea enough though.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Reply

0 BAlfson over 16 years ago

Hey, Ian,

Doing it with packet filter rules certainly works: 'Internal (Network) -> [80,443] -> [203.206.0.0/16]'.

I only made the HTTP/S suggestion because I was looking for more input on an overall theory for implementing Web Security. My current thinking is that the base/default always should be in transparent mode, and that it should include the strictest limitations. I don't feel like I've tested that idea enough though.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Children

No Data