Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Replies 8 replies
  • Subscribers 0 subscribers
  • Views 2194 views
  • Users 0 members are here
Options
Suggested

[9.165][ANSWERED]HTTPS Full Transparent Scanning - How?

scorpionking
Hi!

Updated via Up2Date - no problems so far.

How do I configure the transparent HTTPS scanning without the need for the Proxy CA on the client? Didn't find an appropriate option in the profile settings...
Parents
  • 0
    OK, now I'm a bit confused... [:S]

    I disabled the firewall rule allowing https for internal clients. Then checked the transparent proxy: no ssl scanning enabled.

    Then I tried to reach a https site: works!
    I double checked my firewall rules and web Protection: there is no rule allowing https for this client nor is there https scanning enabled!

    There's nothing in the firewall or proxy log.

    Why do I reach https sites?

    ----------
    Sophos user, admin and reseller.
    Private Setup:

    • XG: HPE DL20 Gen9 (Core i3-7300, 8GB RAM, 120GB SSD) | XG 18.0 (Home License) with: Web Protection, Site-to-Site-VPN (IPSec, RED-Tunnel), Remote Access (SSL, HTML5)
    • UTM: 2 vCPUs, 2GB RAM, 50GB vHDD, 2 vNICs on vServer (KVM) | UTM 9.7 (Home License) with: Email Protection, Webserver Protection, RED-Tunnel (server)
Reply
  • 0
    OK, now I'm a bit confused... [:S]

    I disabled the firewall rule allowing https for internal clients. Then checked the transparent proxy: no ssl scanning enabled.

    Then I tried to reach a https site: works!
    I double checked my firewall rules and web Protection: there is no rule allowing https for this client nor is there https scanning enabled!

    There's nothing in the firewall or proxy log.

    Why do I reach https sites?

    ----------
    Sophos user, admin and reseller.
    Private Setup:

    • XG: HPE DL20 Gen9 (Core i3-7300, 8GB RAM, 120GB SSD) | XG 18.0 (Home License) with: Web Protection, Site-to-Site-VPN (IPSec, RED-Tunnel), Remote Access (SSL, HTML5)
    • UTM: 2 vCPUs, 2GB RAM, 50GB vHDD, 2 vNICs on vServer (KVM) | UTM 9.7 (Home License) with: Email Protection, Webserver Protection, RED-Tunnel (server)
Children
No Data
Unfiltered HTML