Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 41 subscribers
  • Views 4874 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

XG Web policy numbering?

rfcat_vk

Hi folks,

I am trying to identify which web policy is identified on the logviewer reports causing traffic to be blocked.

So far the reports have shown policies numbered 1, 2 and 13. The issue being I don't have 13 web policies and policies 1 and 2 are not used unless policy numbering starts at 0, but even then policy 1 is not used.

Ian



This thread was automatically locked due to age.
Parents
  • +1

    Hello Ian,

    Thank you for contacting the Sophos Community.

    You can run the followingg command in the advanced shell 

    psql -U nobody -d corporate -c "select * from tblsecuritypolicy" > /var/tblsecuritypolicydb

    and then 

    cat /var/tblsecuritypolicydb

    This will display the policy table, and you will find the number of the Web Policy in the left column. 

    Regards,

     
    Emmanuel (EmmoSophos)
    Technical Team Lead, Global Community Support
    Sophos Support VideosProduct Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.
  • 0 in reply to emmosophos

    Hi Emmanuel,

    thank you, that helped identify the policies, strange numbering. Next issue is then to workout why the policy is blocking the site.

    Ian

    XG115W - v20.0.1 MR-1 - Home

    XG on VM 8 - v20 GA

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    The numbering is just the order it was created.  I agree it is not obvious.  I personally find it easier that the firewall id is usually included in the logs.  WebAdmin allow you to filter to just one firewall id and then you can look to which web policy is associated.

    Policy tester will be abe to explain many, but not all, blocks.

Reply
  • 0 in reply to rfcat_vk

    The numbering is just the order it was created.  I agree it is not obvious.  I personally find it easier that the firewall id is usually included in the logs.  WebAdmin allow you to filter to just one firewall id and then you can look to which web policy is associated.

    Policy tester will be abe to explain many, but not all, blocks.

Children
No Data
Unfiltered HTML