I have two networks protected by my UTM. In the first, my managed machines connect to. Being they are all domain joined, I can easily configure proxy settings and import the SSL inspection cert. The second though, is a guest Wi-Fi network. It's used by unmanaged/BYOD devices.
For the first network, I'd like full SSL inspection, so that all downloads (including those over SSL) are scanned by the AV and get URL filtered. For the second network, I don't want to incur the hassle of importing the SSL inspection cert into each user's device. So I just want HTTP to be transparently scanned. That way, at least there is some protection.
The SSL inspection setting seems to be big on/off switch. Is there a way to be more granular and only use it on certain networks?
Thanks in advance!
This thread was automatically locked due to age.
