This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Exclude intranet site from any web policy scanning

Hi there,

REQUIREMENT: I would like to ensure that Sophos never scans our local intranet site, titanus.tsr.local:81/ (an IIS application running on our server). I don't want to slow down performance in any way on this site. I kind of just blundered my way through setting this up so I'm not sure if it is correct.

QUESTION: Will the below settings achieve my requirement?

Thank you once again,

Michellle

This thread was automatically locked due to age.

0 jak over 5 years ago

Does it have a fixed IP or a small range of IPs?

If so I would create an IP excusion, this will result in the client never proxying the traffic to the site for content scanning.

Under:
https://central.sophos.com/manage/config/settings/scanning-exclusions

Add a website exclusion for the IP.

Regards,

Jak
Cancel
Vote Up 0 Vote Down

Cancel
0 DianneY over 5 years ago

Hello Michelle99

To keep Sophos from scanning web traffic from your server http://titanus.tsr.local:81/ you would need to add a Website Exclusion.

Follow the steps here under "Scanning exclusions" and the Type: will be "Website".

For reference, you can check out this article on Web Control (controlling web site access based on allowed/blocked categories) vs Web Protection (controlling access based on malware, which is what is described in the steps above).

If you encounter any performance issues with the server/website, either from accessing it and its features, or within the server itself, go through this article to help isolate the component causing the issue, and start a ticket with Technical Support.
Cancel
Vote Up 0 Vote Down

Cancel