Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 11 replies
  • Subscribers 3 subscribers
  • Views 3086 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Endpoint Web protection

Ross86
I've just installed endpoint enterprise console and connected it to the UTM using full web control, turned on web control and endpoint on the UTM.

When users are connected to the SSL VPN they its using the default web filtering policy.. How can I get the endpoints to use a different policy? I added the SSL VPN pool to this policy but it doesn't help.

Thanks


This thread was automatically locked due to age.
  • 0
    Create a separate proxy profile and add the appropriate endpoint groups to it.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

  • 0
    Where do I add endpoint groups? These are non UTM endpoints.

    Thanks
  • 0
    Ross, have you read How to use the UTM Web Control Policy on SEC?

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0
    Hi Bob,

    It's configured and working however when not on the internal network they are using the default web filtering profile, I wondered if you can configure it so they use another profile.

    Thanks
  • 0
    Now I understand your first post.  You're breaking new ground here!  I see no way to do what you want.  Please let us know what Sophos Support says.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0
    Ok thanks Bob I'll open a support ticket with them and let you know.
  • 0
    Support have come back and said its an unsupported feature, due to the other profiles requiring authentication to the proxy it defaults to the default profile which has no authentication.

    One other question, does the endpoint take priority over the UTM?
  • 0 in reply to Ross86
    Support have come back and said its an unsupported feature, due to the other profiles requiring authentication to the proxy it defaults to the default profile which has no authentication.

    One other question, does the endpoint take priority over the UTM?


    endpoints usually bypass the webfiltering of the http proxy by default yes...you can force things in the webadmin but it leads to performance problems for those endpoints.

    Owner:  Emmanuel Technology Consulting

    http://etc-md.com

    Former Sophos SG(Astaro) advocate/researcher/Silver Partner

    PfSense w/Suricata, ntopng, 

    Other addons to follow

  • 0
    Thanks William, should this also be the case for when on site and not remote?  I'm testing and people with web control on endpoints are still going to the default profile even though they are on the internal network and should be covered by another profile.
  • 0
    Ross, I thought you were talking about when folks were outside of the building.  What you just described seems like a bug to me, so I would ask the Support Engineer to escalate your case.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?