Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Can you enable No Ads in firewall rule, but have certain sites be whitelisted?

There are some sites that I need Ads blocker disabled, or I wouldn't be able to continue.  Is it possible to whitelist?

SFVH (SFOS 18.5.1 MR-1-Build326)



This thread was automatically locked due to age.
Parents
  • Hi,Most certainly is. You need to be using decrypt and scan in the proxy. Create your own web policy using the no adverts, then create exception in the web exceptions.

    the block policy needs to be in your firewall rule web setting, you will also need ips enabled.

    ian

    XG115W - v20.0.3 MR-3 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

  • Where do you set this-decrypt and scan in the proxy?  Not familiar with IPS.  Why does it need to be enabled?

  • Hi,

    ips is used as part of the detection system. You will see check boxes in your firewall rules when you enable the web function. Also you will need to install the XG ca on your devices.

    ian

    XG115W - v20.0.3 MR-3 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

  • Do you mean tick "Decrypt HTTPS during web proxy filtering?"

    XG ca should be installed on each and every device, or?  No access to internet for those devices?

  • Hi,

    please see the screenshot below from my XG.

    Ian

    XG115W - v20.0.3 MR-3 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

  • What happens if I don't install CA?  I've tried installing activating it before, resulting in a lot of blocked access, if I remember correctly.  Is it also required in mobile phones, tablets?

  • What happens is the sites are not evaluated and therefore not blocked. If you are seeing blocked access that means the ca is not installed correctly. Yes it needs to be installed on all devices that use that firewall rule.

    ian

    XG115W - v20.0.3 MR-3 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

Reply
  • What happens is the sites are not evaluated and therefore not blocked. If you are seeing blocked access that means the ca is not installed correctly. Yes it needs to be installed on all devices that use that firewall rule.

    ian

    XG115W - v20.0.3 MR-3 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

Children