Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 3 subscribers
  • Views 6712 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Web Surfing firewall rule needs to be on or off?

Leon Yudko

Hi there,

I am very new to the Sophos UTM firewall. Sophos firewall/web filtering concept is a bit confusing for me at this stage.

Going through the installation steps went pretty quickly and without any problems. Everyone internally can browse the internet and, since I choose to filter bad staff out (nudity, criminals, etc.), web filtering is working too. Great. 

I have noticed that “Web Surfing” firewall rule was created automatically by the installation wizard and the status of it is set to ON (green). Default Web Filtering Profile is also set to allow Internal (Network) to browse with the Transparent mode (no authentication at this stage).

Now, here is the part where I don’t understand. Its looks like that I can switch off the “Web Surfing” firewall rule and all of my users are still can browse the Internet?! Why the heck installation wizard created that web surfing rule anyway?! How do I control internet access for my users? With firewall rules or web filtering profiles?

Thanks in advance.



This thread was automatically locked due to age.
Parents
  • 0

    Hi, Leon, and welcome to the UTM Community!

    You do that with Web Filtering.  Depending on how you have that configured, that may only handle port 80 traffic.  The other web accesses are allowed by the firewall rule.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Thanks Bob very much for you reply. I (we) need to know how this Web Filter (or other Sophos modules) needs to be configured properly. Some kind of best practice step by step instructions, flowcharts, diagrams, etc. In my opinion, I think Sophos Administrator guide is quite "plain".

  • 0 in reply to Leon Yudko

    Leon,

    The web filtering will intercept the http/https traffic and scan websites using engines filtering (av, URL, application, etc). If you create the firewall rule the traffic wil not be inspected, but Utm will only open ports to allow the connection.

    So make sure to use web filtering, application control, ftp, email and dns filtering without opening any port (Utm will intercept , inspect the traffic and open the required ports)

    Of course it depends on the type of configuration and licenses you have.

    Have a look at PDF documentation on Sophos website or from Utm web admin page from your Utm to know how different modules works.

Reply
  • 0 in reply to Leon Yudko

    Leon,

    The web filtering will intercept the http/https traffic and scan websites using engines filtering (av, URL, application, etc). If you create the firewall rule the traffic wil not be inspected, but Utm will only open ports to allow the connection.

    So make sure to use web filtering, application control, ftp, email and dns filtering without opening any port (Utm will intercept , inspect the traffic and open the required ports)

    Of course it depends on the type of configuration and licenses you have.

    Have a look at PDF documentation on Sophos website or from Utm web admin page from your Utm to know how different modules works.

Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?

Unfiltered HTML