Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 12 replies
  • Subscribers 1 subscriber
  • Views 6868 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

how to set different rights (web app/filter)

LoD
Hi,

my setup is as followed:
UTM 220
- 2 WAN interfaces
- 2 Wireless lans (guest + internal; different subnets)
- web filtering: 
transparent with AD SSO. No auth for blackberry
allowed networks: internal + guest
filter profiles: default settings
application control: 1 rule for source net "any" blocking ads

Now I wanted to have another AC-rule to block social networking for internal network users but allow for guest network. I created the rule and set it to the top of AC.
To test I logged in with my blackberry from internal, watching AC-Log and Web Filtering log but still can access e.g. facebook. No entries in AC-Log only in WebFiltering log.

Would be glad if s/o could explain how to achieve that. Reading the "rulz" didn't clearify [:(]

Greetings
LoD


This thread was automatically locked due to age.
Parents
  • 0
    about the flow description:
    I think the app control fits in with the proxies.. or the firewall,
    If it fits in with the firewall, then the web filter comes first,
    If it fits in with the proxies, then it's not specified if WebFilter or App Control is handled first.

    About your issue:
    Can you try it with a single host instead of a group?
Reply
  • 0
    about the flow description:
    I think the app control fits in with the proxies.. or the firewall,
    If it fits in with the firewall, then the web filter comes first,
    If it fits in with the proxies, then it's not specified if WebFilter or App Control is handled first.

    About your issue:
    Can you try it with a single host instead of a group?
Children