Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 25 replies
  • Answers 2 answers
  • Subscribers 43 subscribers
  • Views 8182 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How configure SSL/TLS inspection settings for smartphone apps

Naoki_I

Hello there.
I am using XG firewall home edition in my house.
Some of the iOS apps are not available with SSL/TLS inspection enabled. When disabled, they can be used.

I checked LogViewer and in some cases it is Error and in other cases it is not Error.
I am checking LogViewer and iOS apps one by one. If necessary, I add them to the Local TLS exclusion list.

But this is hard work. And I want to respect the children's privacy, so we would like to keep LogViewer checks to a minimum.

How do you configure SSL/TLS inspection settings for mobile devices?

Regards,

XG135

HomeEdition(SFOS 19.0.1 MR-1-Build365)



This thread was automatically locked due to age.
Parents
  • 0
    Naoki_I said:
    I use XG as a dedicated firewall unit in order to have the devices play different roles.

    Can you explain what this means? I'm trying to understand what you are trying to achieve as there may be a better way to configure your network to achieve what you want while respecting the privacy of your children.

    We deal with this issue both with businesses and at home. There isn't a perfect answer. In all situations we have a guest wifi that is segregated from the main network. Where people just need internet access, they connect to the guest network which has no TLS/SSL scanning. This is the same level of security as using their mobile phone signal for internet but protects the rest of your network. This may work for you at home but it depends what your exact requirements are.

Reply
  • 0
    Naoki_I said:
    I use XG as a dedicated firewall unit in order to have the devices play different roles.

    Can you explain what this means? I'm trying to understand what you are trying to achieve as there may be a better way to configure your network to achieve what you want while respecting the privacy of your children.

    We deal with this issue both with businesses and at home. There isn't a perfect answer. In all situations we have a guest wifi that is segregated from the main network. Where people just need internet access, they connect to the guest network which has no TLS/SSL scanning. This is the same level of security as using their mobile phone signal for internet but protects the rest of your network. This may work for you at home but it depends what your exact requirements are.

Children
  • 0 in reply to JasP

    Thank you  

    > Can you explain what this means?

    a few months ago, my devices were connected directly to the router. I installed XG firewall a few months ago.

    For my network studies and for network-level security. 

    I installed it in bridged mode so that if I change my mind, I can remove it immediately.

    VLAN or guest wifi is nice ideaGrinning I will consider it.

    But I don't wanna create complicated network. If I die, there will be no one left to understand home network lol.

Unfiltered HTML