Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 25 replies
  • Answers 2 answers
  • Subscribers 43 subscribers
  • Views 8189 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How configure SSL/TLS inspection settings for smartphone apps

Naoki_I

Hello there.
I am using XG firewall home edition in my house.
Some of the iOS apps are not available with SSL/TLS inspection enabled. When disabled, they can be used.

I checked LogViewer and in some cases it is Error and in other cases it is not Error.
I am checking LogViewer and iOS apps one by one. If necessary, I add them to the Local TLS exclusion list.

But this is hard work. And I want to respect the children's privacy, so we would like to keep LogViewer checks to a minimum.

How do you configure SSL/TLS inspection settings for mobile devices?

Regards,

XG135

HomeEdition(SFOS 19.0.1 MR-1-Build365)



This thread was automatically locked due to age.
  • 0 in reply to alan weir

    Thank you  

    But, I don't have android device. I have apple devices , Linux, and windows PC.

  • 0 in reply to JasP

    Thank you  

    You says about "Managed TLS exclusion list"? Yes. I use it. Still, Errors occur. So I maintain "Local TLS execution list".

  • 0 in reply to JasP

    Thank you  

    > Can you explain what this means?

    a few months ago, my devices were connected directly to the router. I installed XG firewall a few months ago.

    For my network studies and for network-level security. 

    I installed it in bridged mode so that if I change my mind, I can remove it immediately.

    VLAN or guest wifi is nice ideaGrinning I will consider it.

    But I don't wanna create complicated network. If I die, there will be no one left to understand home network lol.

  • 0 in reply to Naoki_I

    HI,

    I gave up on using SSL/TLS rules for my home devices, too many applications did not function. I use web proxy and exceptions. I found the easiest way to create exceptions was copy existing ones and replace the parts of each exception. The exceptions primarily use regex if you care to search the web for how to use regex.

    My network consists of

    various apple devices (7), printers, PCs in VMs, security cameras, light and power controllers, smart tvs and players etc.

    Ian

    XG115W - v20.0.3 MR-3 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    Hello  

    Thank you for sharing your experience. I think ' give up on using SSL/TLS rules‘ is better too.

    I created this discussion to know if there is some other way.

    I will try web proxy. Thank you for sharing the easiest way to create exceptions.  

    Regards,

Unfiltered HTML