[8.960] Application control and firewall rule

Web Security: Time-Based Application Control Rules

New Feature: Configure QoS/TOS/DSCP settings in the firewall and application control.
NetFlows: UTM should show both the origin and destination of packets, not only the address for service connection.
Time Quota QoS / Shape: Apply for ips/networks, scheduling options and shape controls ... and adding users and after the minimum bandwidth limit exceeded.

Reports shall inform IPS origin and destination for the type of attack in order to identify a possible problem with a host.

Hello , 

This does not answer my question and not feature 

The reason i ask question is i am faceing this problem with irc and dropbox even after adding this application and application control list i have to add firewall rule manually in some case it doesnt help me as i am faceing problem with dropbox on ubuntu 12.04 

i was waiting for this issuse   https://community.sophos.com/products/unified-threat-management/astaroorg/f/75/t/64204  (which was renamed/address as a Endless loop when processing certain SSL connections in transparent mode (in 8.965 release note )) to be fix but it was fix now still i am faceing this problem or may be this are two differant issuse 

i am using transparent mode

2012:06:01-11:01:24 acenn httpproxy[24881]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x10c20e40" function="ssl_log_errors" file="ssl.c" line="56" message="C 192.168.3.125: 4034259824:error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca:s3_pkt.c:1195:SSL alert number 48"
2012:06:01-11:01:24 acenn httpproxy[24881]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x10c20e40" function="ssl_log_errors" file="ssl.c" line="56" message="C 192.168.3.125: 4034259824:error:140940E5:SSL routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:945:"
2012:06:01-11:01:24 acenn httpproxy[24881]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="" srcip="192.168.3.125" dstip="" user="" statuscode="000" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction=" ()" size="0" request="0x10c20e40" url="https://199.47.216.174" exceptions="" error=""
2012:06:01-11:01:25 acenn httpproxy[24881]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x10c4b010" function="ssl_log_errors" file="ssl.c" line="56" message="C 192.168.3.125: 4025867120:error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca:s3_pkt.c:1195:SSL alert number 48"
2012:06:01-11:01:25 acenn httpproxy[24881]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x10c4b010" function="ssl_log_errors" file="ssl.c" line="56" message="C 192.168.3.125: 4025867120:error:140940E5:SSL routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:945:"
2012:06:01-11:01:25 acenn httpproxy[24881]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="" srcip="192.168.3.125" dstip="" user="" statuscode="000" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction=" ()" size="0" request="0x10c4b010" url="https://199.47.217.173" exceptions="" error=""
2012:06:01-11:01:26 acenn httpproxy[24881]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x10c4b8e0" function="ssl_log_errors" file="ssl.c" line="56" message="C 192.168.3.125: 4017474416:error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca:s3_pkt.c:1195:SSL alert number 48"
2012:06:01-11:01:26 acenn httpproxy[24881]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x10c4b8e0" function="ssl_log_errors" file="ssl.c" line="56" message="C 192.168.3.125: 4017474416:error:140940E5:SSL routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:945:"
2012:06:01-11:01:26 acenn httpproxy[24881]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="" srcip="192.168.3.125" dstip="" user="" statuscode="000" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction=" ()" size="0" request="0x10c4b8e0" url="https://199.47.218.159" exceptions="" error=""
2012:06:01-11:01:27 acenn httpproxy[24881]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x1102f190" function="ssl_log_errors" file="ssl.c" line="56" message="C 192.168.3.125: 4009081712:error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca:s3_pkt.c:1195:SSL alert number 48"
2012:06:01-11:01:27 acenn httpproxy[24881]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x1102f190" function="ssl_log_errors" file="ssl.c" line="56" message="C 192.168.3.125: 4009081712:error:140940E5:SSL routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:945:"
2012:06:01-11:01:27 acenn httpproxy[24881]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="" srcip="192.168.3.125" dstip="" user="" statuscode="000" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction=" ()" size="0" request="0x1102f190" url="https://199.47.219.159" exceptions="" error=""
2012:06:01-11:01:58 acenn httpproxy[24881]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x10eee020" function="ssl_log_errors" file="ssl.c" line="56" message="C 192.168.3.125: 4000689008:error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca:s3_pkt.c:1195:SSL alert number 48"
2012:06:01-11:01:58 acenn httpproxy[24881]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x10eee020" function="ssl_log_errors" file="ssl.c" line="56" message="C 192.168.3.125: 4000689008:error:140940E5:SSL routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:945:"
2012:06:01-11:01:58 acenn httpproxy[24881]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="" srcip="192.168.3.125" dstip="" user="" statuscode="000" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction=" ()" size="0" request="0x10eee020" url="https://199.47.216.172" exceptions="" error=""
2012:06:01-11:01:59 acenn httpproxy[24881]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x10c629b0" function="ssl_log_errors" file="ssl.c" line="56" message="C 192.168.3.125: 3992296304:error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca:s3_pkt.c:1195:SSL alert number 48"
2012:06:01-11:01:59 acenn httpproxy[24881]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x10c629b0" function="ssl_log_errors" file="ssl.c" line="56" message="C 192.168.3.125: 3992296304:error:140940E5:SSL routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:945:"
2012:06:01-11:01:59 acenn httpproxy[24881]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="" srcip="192.168.3.125" dstip="" user="" statuscode="000" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction=" ()" size="0" request="0x10c629b0" url="https://199.47.216.174" exceptions="" error=""
2012:06:01-11:02:00 acenn httpproxy[24881]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x1109cd40" function="ssl_log_errors" file="ssl.c" line="56" message="C 192.168.3.125: 3983903600:error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca:s3_pkt.c:1195:SSL alert number 48"
2012:06:01-11:02:00 acenn httpproxy[24881]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x1109cd40" function="ssl_log_errors" file="ssl.c" line="56" message="C 192.168.3.125: 3983903600:error:140940E5:SSL routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:945:"
2012:06:01-11:02:00 acenn httpproxy[24881]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="" srcip="192.168.3.125" dstip="" user="" statuscode="000" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction=" ()" size="0" request="0x1109cd40" url="https://199.47.217.173" exceptions="" error=""
2012:06:01-11:02:01 acenn httpproxy[24881]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x10da4b70" function="ssl_log_errors" file="ssl.c" line="56" message="C 192.168.3.125: 3975510896:error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca:s3_pkt.c:1195:SSL alert number 48"
2012:06:01-11:02:01 acenn httpproxy[24881]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x10da4b70" function="ssl_log_errors" file="ssl.c" line="56" message="C 192.168.3.125: 3975510896:error:140940E5:S routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:945:"/d
2012:06:01-11:02:01 acenn httpproxy[24881]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="" srcip="192.168.3.125" dstip="" user="" statuscode="000" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction=" ()" size="0" request="0x10da4b70" url="https://199.47.218.159" exceptions="" error=""
2012:06:01-11:03:02 acenn httpproxy[24881]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x10cbcad8" function="ssl_log_errors" file="ssl.c" line="56" message="C 192.168.3.125: 3967118192:error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca:s3_pkt.c:1195:SSL alert number 48"
2012:06:01-11:03:02 acenn httpproxy[24881]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x10cbcad8" function="ssl_log_errors" file="ssl.c" line="56" message="C 192.168.3.125: 3967118192:error:140940E5:SSL routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:945:"
2012:06:01-11:03:02 acenn httpproxy[24881]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="" srcip="192.168.3.125" dstip="" user="" statuscode="000" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction=" ()" size="0" request="0x10cbcad8" url="https://199.47.219.159" exceptions="" error=""
2012:06:01-11:03:03 acenn httpproxy[24881]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x10cdc710" function="ssl_log_errors" file="ssl.c" line="56" message="C 192.168.3.125: 3958725488:error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca:s3_pkt.c:1195:SSL alert number 48"

 

i am using transparent mode

thanks