Guys, I have the following situation:
In the user's web filtering logs, I have several records of accesses to URLs that the user did not actually access. For example, in the logs there is an access by user X to a certain URL, and in fact what happened was that when opening another website, there was an advertisement on this website that generated a request in the firewall when loading the web page, and that counted as if it were a user access, because there was a request.
This often happens with betting sites, the user accesses any site, on this site there is an advertisement/advertisement for a betting site and this request generated when loading the ad, generated a kind of "false positive", in that the user did not actually access that betting site.
I wonder if anyone has experienced this and if there is a better way to filter this out? focus more on real traffic from the user itself and not on other requests that are not generated by him.
I understand that it would be enough to use the consumption verification, but there are no access details and times.
Hello Guilherme Silva1 ,Thank you for reaching out to the community, I'd recommend you the follow read - Sophos Firewall: How to block advertisement on web via web filteringLet me know if that helps understanding, your valuable inputs will be appreciated.
Thanks & Regards,_______________________________________________________________
Vivek Jagad | Team Lead, Global Support & Services
Sophos Community | Product Documentation | Sophos Techvids | SMSIf a post solves your question please use the 'Verify Answer' button.
Hello Vivek Jagad how are you ?
This blocking works, but it also ends up blocking all valid ad sites, the problem is the ads that open inside other pages, like the example used in the suggestion:
What exactly is a valid ad site, it is either a ad or a valid business site? you need to create exceptions for ads you wish to see which will be strange to manage.
XG115W - v19.5.1 mr-1 - Home
If a post solves your question please use the 'Verify Answer' button.
that's right, a valid business website.
You can create an exception for a valid business website. You can also add an exception of that website's category if the complete category is useful to you.