This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Web filtering with XGS and Intercept X


I've seen this question asked but none of the posts have an answer. 

We have an XGS firewall and Sophos Endpoint Protection on our PCs. 

When laptops for example, are on-site or on VPN, they get the XGS polices AND the Endpoint policies. We have to go in and make exceptions on both, if someone requests it.

Off site it is just the Endpoint web filter which is ok but having to make exceptions in 2 systems for on site access is tiresome. 

Any way to have one take preference over the other when on site? We do need web filtering for off-site workstations. And we like the way the XGS performs web filtering on site, it seems much easier to manage with AD groups. It would be a shame to have to turn one off and lose out on the benefits of both.

Thank you

This thread was automatically locked due to age.
  • At the moment, there is no coordination between the two. 

    Consolidated web policies and reporting are still on the product team's radar, but there are other priorities that have taken precedence. For now, you can achieve consistency of protection by using only the Intercept X endpoint web protection. Of course, this doesn't provide the reporting that Sophos Firewall provides, and it doesn't address your preference for using XGS filtering when possible. It also doesn't doesn't "hand off' the enforcement to the firewall when users are in the office.

    Note that you can assign endpoint policies to AD groups in Sophos Central.

    We recognize the value of a more seamless, integrated approach, so stay tuned for potential future developments.