Hello all,
I am just learning Sophos UTM 9.106-17...
I am trying to perform web filtering based on client IP address instead of user name because this is a windows workgroup environment.
E.g. I have two computers in my test Workgroup defined by IP address (192.168.2.5 and 192.168.2.7)
I would like to give .7 full access to the web and only give .5 Facebook.
I am able to create both of these conditions in a global way (both computers adhere to the same policy) but cannot see how to apply a different policy to each computer.
Here is what i tried for the face book only policy in Web Protection\Web Filtering Profiles
1. Create Filter action
Name: Test Allow Facebook only
Mode: Block by default
Threshold: Trusted
Allow these website categories: Did not select any categories
Allow these URL sites:
name: Allow Facebook
Domains: left blank
Regular Expressions: https://www.facebook.com/
Checked "Use Antivirus scanning"
2. Create Filter Assignment
Name: Test Facebook only anytime
Allowed User Groups: Left this blank
Time Event: Always
Filter Action: Test Allow Facebook only
3. Create Proxy profile
Name: Test User
Position 1 (only one profile)
Source Networks:
Name: Client IP 192.168.2.5
Type Network
IPv4 Address: I typed in 192.168.2.5 but it resolved to 192.168.2.0
Net mask: /24
Filter Assignments: Test Facebook only anytime
Fallback action: Default filter action
Operation Mode: Transparent
Authentication type: none
Did not check "Full transparent mode" or "Scan HTTPS(SSL) traffic"
This works very well but has the same affect on both computers on the test network in the 192.168.2.x range.
Does anyone see what I am missing here? What I need to do to apply this policy to only one Client computer based on IP address?
Thanks!
This thread was automatically locked due to age.
