Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 8 replies
  • Subscribers 1 subscriber
  • Views 6183 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Webfilter with HTTPS scanning and exceptions

LSassl
We are using Sophos UTM 9.106-17. I've configured the webfilter with HTTPS scanning. I've also created exceptions for some websites:

Webpage: 
https://www.postbank.de

Exception: 
^https?://([A-Za-z0-9.-]*\.)?postbank\.de/


If I open the webpage, the log shows me the following entry: 

REF_DefaultHTTPCFFAction (Default content filter action)" size="87331" request="0xd357028" url="www.postbank.de/" exceptions="av,auth,content,url,ssl,certcheck,certdate,mime,cache,fileextension,size" error="" application="http"


It seems for me that the exception is valid but the browser shows me the intercepted certificate. Is there a cache where the generated certs are stored? If so, is there a way to clean up this certs?

Best regards


This thread was automatically locked due to age.
Parents
  • 0
    Sophos support [...] told me, that exceptions did not work in transparent mode with SSL interception.

    Thanks, LSassl, for teaching me something today!  I have to admit that I always put our clients on Standard first.  SSL Scanning comes later.  So, my only experience with Transparent SSL scanning was in our lab.

    Cheers - Bob
Reply
  • 0
    Sophos support [...] told me, that exceptions did not work in transparent mode with SSL interception.

    Thanks, LSassl, for teaching me something today!  I have to admit that I always put our clients on Standard first.  SSL Scanning comes later.  So, my only experience with Transparent SSL scanning was in our lab.

    Cheers - Bob
Children
No Data