Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • +2 person also asked this people also asked this
  • Locked Locked
  • Replies 2 replies
  • Answers 1 answer
  • Subscribers 42 subscribers
  • Views 3707 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Disable logging for specific content catgories

itsamemarkus

Hi everyone, is it possible to disable logging for specific (url) categories? For example disable logging for

  • Health & Medicines
  • Financial services

I'm new to sophos firewalls and as far as I know it's only possible to add one web policy to a security rule, where you can globally disable logging.

First I thought of having a top policy that matches https 443 with a web policy for those both categories, but if I understand this correctly this would match all https traffic, with no further security policy processing.

Is there a way to disable logging for specific categories (or even apps)



This thread was automatically locked due to age.
Parents
  • +1

    You can disable logging for an entire web policy, you must "Edit" the policy in the pop up editor rather than make changes in place.
    You cannot disable logging for a single web policy rule.

    You can go to Web Exceptions and add an exception for a category, then disable HTTPS scanning.  That means for HTTPS connections it will only log the main website and not any of the individual pages within it.  So you would still see mybank.com but not mybank.com/mortgage/application.

    If there is a very specific domain you do not want, you can add an FQDN host for that domain.  Then create a firewall rule that uses the FQDN as a destination.  You can select a web policy that does not log.

Reply
  • +1

    You can disable logging for an entire web policy, you must "Edit" the policy in the pop up editor rather than make changes in place.
    You cannot disable logging for a single web policy rule.

    You can go to Web Exceptions and add an exception for a category, then disable HTTPS scanning.  That means for HTTPS connections it will only log the main website and not any of the individual pages within it.  So you would still see mybank.com but not mybank.com/mortgage/application.

    If there is a very specific domain you do not want, you can add an FQDN host for that domain.  Then create a firewall rule that uses the FQDN as a destination.  You can select a web policy that does not log.

Children
No Data
Unfiltered HTML