We'd love to hear about it! Click here to go to the product suggestion community
Sorry for my bad English.We are having difficulty with our Sophos XG.We use the authenticated mode for internet access.We need to allow access to Gmail, but we cannot allow access to YouTube for certain usersWhat is happening:- Rule1: if the user does not have permission to access Gmail, nor Youtube, Youtube does not load;- Rule2: if the user does not have permission to access Gmail, but has permission for Youtube, Youtube loads normally;- Rule3: If the user is allowed to access Gmail, but does not have permission for YouTube, Youtube loads the page, including searches, but does not play any videos.What do we need to do to solve the problem in Rule3? We need YouTube not to load the page in this scenario.Thanks!
Can you share the firewall rules?
Are you using web filtering or application filtering?
Hi Paulo Jose Bueno,
I would request you to check configuration of your Rule 3 and make sure you have YouTube blocked either with web policy or application control. Check firewall Rule 3 has Block Google QUIC checked.
Sophos Firewall: How to block YouTube with a Web Policy
Sophos Firewall: How to block YouTube with Application Control
If Firewall rule 3 is configured according to one of this KB Article, please take packet capture from the GUI and identify if the traffic is hitting correct rule or no.
Sophos XG Firewall: How to filter packets using packet capture
You should be able to check Rule ID in packet capture, just like shown in the screenshot.
Thanks for the contact and for the information lferrara and H_Patel.
However, we managed to solve our problem with "Rule3" through the support of the company BR2T (Sophos partner here in Brazil).
We had created a firewall rule that was in line with Sophos' proposal (KBs). So BR2T modified our firewall rule and used the FQDN block (*.youtube.com), instead of the "Application Police" / "Web Police" block.