Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 2 subscribers
  • Views 6775 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SEC & UTM web policy not working

Louis-M

We have our laptops set up with a web policy via the UTM. On the UTM, we have a website that is blocked. This works for all pc's, laptops etc when they are behind the UTM.

However, when the laptops leave the site, they should continue the UTM policy. If we go to the blocked site, we get a pop up notification saying the website is blocked by the policy.

Problem is, we can still browse the site even though it's telling us it's blocked. Any ideas?



This thread was automatically locked due to age.
Parents
  • 0

    Hello Louis-M,

    in SEC you've enabled Full Web Control with the UTM as appliance?
    Do you get the same pop-up behind the UTM as when out-site? And how do you block the site in the policy from the UTM?

    Christian

  • 0 in reply to QC

    Hi Christian,

    yes full web control with the UTM as the appliance and all details entered in. Behind the UTM, the site is blocked by the UTM and we get the same pop up so I suspect it's the UTM doing the blocking as that's what shows in the UTM logs and its blocked on pc's that don't have the same policy. So the UTM is doing it's stuff.

    Out of the network, the pop up shows but we get on the banned site. There are no web events etc showing in SEC either.

Reply
  • 0 in reply to QC

    Hi Christian,

    yes full web control with the UTM as the appliance and all details entered in. Behind the UTM, the site is blocked by the UTM and we get the same pop up so I suspect it's the UTM doing the blocking as that's what shows in the UTM logs and its blocked on pc's that don't have the same policy. So the UTM is doing it's stuff.

    Out of the network, the pop up shows but we get on the banned site. There are no web events etc showing in SEC either.

Children
  • 0 in reply to Louis-M

    Hello Louis-M,

    thinking about it, the pop-up (from the taskbar) is presented by the Endpoint software only when a HTTPS connection is attempted, otherwise a blocked page is presented in the browser. Furthermore as you say Behind the UTM, the site is blocked by the UTM and we get the same pop up it looks like 1) Endpoint blocks some HTTPS-URL according to the (Endpoint Web Control) policy it received from the UTM but not the site itself, 2) only UTM blocks the site in question. In other words the policy for the endpoints does not tell them to block this site.

    I'm not familiar with the UTM so I can't tell which policies to check.

    Christian

Unfiltered HTML