Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 1 subscriber
  • Views 412 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to scan SSL-Traffic for one interface only

Xenon
Are we able to turn on SSL Scan for only one interface?

We want to apply Web Filtering on two differnt interfaces.

LAN 1 -> WAN (SSL on)
LAN 2 (bridge interface) -> WAN (SSL off)

Both networks are logically seperated (different WAN Ports - no Gateway/Routing between networks).

Any hint on this? Thanks!


This thread was automatically locked due to age.
  • 0
    Hi, Xenon, and welcome to the User BB!

    This is exactly the way Profiles work.  Each Profile has an SSL option.  A Profile is selected based on the user's IP.  Your diagram misplaces the SSL; maybe the following is clearer:

    LAN 1 -> Profile 1 (SSL scanned) -> WAN
    LAN 2 (bridge interface) -> Profile 2 (SSL passed through) -> WAN

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    Thank you, BAlfson.

    Haven't taken a look at the Profiles Menu, yet. Stupid question... [;)]

    Well, this is our first Astaro. Therefore, it is a little 'learning by doing' [:)]
Cookie Information Banner