This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to Allow Skype by users/Groups

Hi all,

I'm using Sophos UTM Home Edition for testing Web Protection Function, especially Application Control. This Sophos has joined to Domain. I have few computers, and I created a network definition for a Host name: user01 - IP 192.168.10.120.

I did tried to allow Skype for a specific host but it does not work. Would you please help me in this case? Thanks a lot

I created 2 rules in Application Control as below

Rule 1:
Allow Skype
Action: allow
Control these Applications: Skype
For: user01 (IP 192.168.10.120)

Rule 2:
Block Skype
Action: Block
Control these Applications: Skype
For: any

Thanks a lot

This thread was automatically locked due to age.

0 asc over 10 years ago

Hey Taihoang,

how does your internal client 192.168.10.120 reach the outside world? Via NAT or HTTP Proxy?

If its through a proxy then forget about Application Control (AC). As soon as you use a SOCKS or HTTP proxy, the original client IP is not going to be used anymore and you can therefore not filter that traffic in Application Control.

I wanted to allow Skype for specific clients on the internal net - just like you - but I realized that my external firewall IP showed up in the AC logs and not the internal client IP.

I don't know about any feasible workarounds to that problem.

Regards
asc
Cancel
Vote Up 0 Vote Down

Cancel
0 taihoang over 10 years ago

yes, from live view of AC logs, we realized the same log as what you saw. It seems that there is no way to block or allow application by user or by computer IP Address like other Proxy Server.
I'd like to use astaro and now sophos UTM but I don't know how to solve this, even that I tried to create web filter for each network but it didn't affect to application control.
The allow rule for skype as some instruction in this forum does not solve the problem. It's strange....
Cancel
Vote Up 0 Vote Down

Cancel