Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 8 replies
  • Subscribers 1 subscriber
  • Views 6183 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Webfilter with HTTPS scanning and exceptions

LSassl
We are using Sophos UTM 9.106-17. I've configured the webfilter with HTTPS scanning. I've also created exceptions for some websites:

Webpage: 
https://www.postbank.de

Exception: 
^https?://([A-Za-z0-9.-]*\.)?postbank\.de/


If I open the webpage, the log shows me the following entry: 

REF_DefaultHTTPCFFAction (Default content filter action)" size="87331" request="0xd357028" url="www.postbank.de/" exceptions="av,auth,content,url,ssl,certcheck,certdate,mime,cache,fileextension,size" error="" application="http"


It seems for me that the exception is valid but the browser shows me the intercepted certificate. Is there a cache where the generated certs are stored? If so, is there a way to clean up this certs?

Best regards


This thread was automatically locked due to age.
Parents
  • 0
    Hi, LSassl, and welcome to the User BB!

    My standard Exception for SSL Scanning is "SSL scanning / Certificate Trust Check" for "Finance/Banking" and I see no certificate warning when browsing to that URL.  Have you imported the Proxy CA into your browser?  You also should import it via mmc to avoid problems with Windows/Microsoft updates.

    Cheers - Bob
Reply
  • 0
    Hi, LSassl, and welcome to the User BB!

    My standard Exception for SSL Scanning is "SSL scanning / Certificate Trust Check" for "Finance/Banking" and I see no certificate warning when browsing to that URL.  Have you imported the Proxy CA into your browser?  You also should import it via mmc to avoid problems with Windows/Microsoft updates.

    Cheers - Bob
Children
No Data