Astaro.org (Read-Only)

ASG V8.000 BETA (closed) closed thread

Thread Info

State Not Answered
Replies 7 replies
Subscribers 0 subscribers
Views 1005 views
Users 0 members are here

Options

Suggested

closed thread

utm_kid over 15 years ago

https://community.sophos.com/products/unified-threat-management/astaroorg/f/102/t/68938

my question is if i add google.com and google.co.in

to web security>>http/s>>advance >>Transparent mode skiplist

i should not get log for google.com and google.co.in

thx

Parents

0 BAlfson over 15 years ago

kbr, are you certain? I believe, for example, that he could create a DNS Group definition with Google.com and use that in the transparent mode skiplist to prevent the transparent proxy from capturing traffic to those IPs.

Also, I believe that any traffic passing through the proxy is logged (in this example, that would NOT include the Google.com IPs), and that there is no option in Exceptions that disables logging for a domain or URL.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Reply

0 BAlfson over 15 years ago

kbr, are you certain? I believe, for example, that he could create a DNS Group definition with Google.com and use that in the transparent mode skiplist to prevent the transparent proxy from capturing traffic to those IPs.

Also, I believe that any traffic passing through the proxy is logged (in this example, that would NOT include the Google.com IPs), and that there is no option in Exceptions that disables logging for a domain or URL.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Children

0 kbr over 15 years ago in reply to BAlfson

... create a DNS Group definition with Google.com and use that in the transparent mode skiplist to prevent the transparent proxy from capturing traffic to those IPs.

that's totally consistent with what i said. That skiplist skips the proxy as a whole, and with it the AV and Malware filters. It's not just for skipping the logging port, it circumvents the proxy as a whole.

... I believe that ... there is no option in Exceptions that disables logging for a domain or URL.

It's some of the new features in Websecurity>>HTTP/S>>Exceptions, see screenshot
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel