This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos endpoint specific proxy settings

I'm seeing a lot of outgoing traffic from SSP.exe on machines that don't have internet access. I am reluctant to configure system wide proxy settings, but would like ideally to set a proxy specifically for SSP and other SEP components that require internet access rather than SEC connectivity. Failing that is there a way to prevent SSP from talking to the internet that can be configured from SEC?



This thread was automatically locked due to age.
Parents
  • Hello Jeremy Gainsford,

    machines that don't have internet access
    so what's the problem - that SSP is hammering against the firewall? Or that you want to let SSP through so that it can be fully functional?
    AFAIK all components that consult or feedback to the cloud use the Windows system proxy settings. Under ProgramData there's a Config folder for SSP, insome of the files there are Sophos URLs that SSP connects to - perhaps you could either whitelist them in the firewall or blackhole them with \etc\hosts.

    Christian

  • Like I said. I'm not eager to set system wide proxy settings. The machines in question are running software which is known to be insecure. Can't change the software, it's LoB stuff that's attached to expensive hardware. So I'm tying for the least pessimal solution. 

    Given that these computers are subject to 3rd party engineers turning up and sticking USB sticks in them (a practice there's organisational resistance to changing) I'm reluctant to turn off protection that Sophos describe as necessary. 

Reply
  • Like I said. I'm not eager to set system wide proxy settings. The machines in question are running software which is known to be insecure. Can't change the software, it's LoB stuff that's attached to expensive hardware. So I'm tying for the least pessimal solution. 

    Given that these computers are subject to 3rd party engineers turning up and sticking USB sticks in them (a practice there's organisational resistance to changing) I'm reluctant to turn off protection that Sophos describe as necessary. 

Children