This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Webfiltering - Subnet

zeus1976 over 10 years ago

Hello Together,

I've found a few days ago that it is possible to access from a DMZ address to the web server on the LAN.

There is no firewall rule and after several tests, I recognized that the proxy server (web filter) allows this access.

Policy Helpdesk confirm that is allow.

Can I prevent this?

Thanks for the feedback.

Best regards

This thread was automatically locked due to age.

Parents

0 BAlfson over 10 years ago

All you need is: ^https?://192\.168\.200\.[0-9]+\.

That approach is useful if you have the non-guest LAN also using a Transparent instead of a Standard mode.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BAlfson over 10 years ago

All you need is: ^https?://192\.168\.200\.[0-9]+\.

That approach is useful if you have the non-guest LAN also using a Transparent instead of a Standard mode.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data