Configuring VPN Remote Access for the first time on your Sophos XG Firewall? Check out this useful Community post!
Advisory: Sophos XG Firewall - Antivirus service stopped due to failed pattern update. Please visit this KBA for the latest updates
We'd love to hear about it! Click here to go to the product suggestion community
As the title suggests, I want to import a large list of domains (~ 5000) via API http post.
I think I need this API call:
I've already tried it but never found the newly created object.
Any help is greatly appreciated!
Thanks in advance
Do you want to create a regex list for Web exception? How do you want to import this list of domains and where do you intend to use it?
In reply to Jaydeep:
thanks for your reply. There are no regexes, just normal domains and IP addresses.
I want to use the domains as a blacklist.
When using the WebUI, theres an option for importing domain.
In reply to timreck:
Hallo Tim and welcome to the UTM Community!
In my experience, adding so many objects to the UTM causes it to bog down and not function well. Perhaps you could tell us what you want to accomplish so that we can tell you the best technique to apply in WebAdmin on the UTM.
Cheers - Bob
In reply to BAlfson:
thanks for your reply. My boss asked my if we can block "bad" URL from Emotet servers.
Currently we have IPS and advanced threat protection enabled.
I my opinion I think thats enough - what do you think?
If you're using UTM Web Filtering, Tim, and not allowing access that skips the Proxy except for select uses, then, yes, I agree that IPS and ATP are an important part of the solution. If you don't already have a Sandstorm subscription, I would definitely add that. Also, if the UTM's SMTP Proxy is not doing anti-malware on your inbound email, I would consider whether the anti-malware solution you have offers something like Sandstorm. Sandstorm is additional protection against day-1 threats like ransomware.
For devices that can be moved out from behind the UTM, I prefer to also use Sophos' Intercept X for anti-malware as it also uses a sandboxing technique similar to how the UTM uses Sandstorm.