Returned to Sophos after coming from Untangle and have a question regarding the Block page that is shown to clients where content is restricted by the Web Filter, ie Adult content etc.
- I have a LetsEncrypt Certificate correctly set up and using that internally resolvable FQDN to access the firewall web console. Tested working fine and trusted on all devices.
- Adminstration -> Admin and user Settings : "When redirecting users...." is set to "different hostname" and is set to the same FQDN I use above and as per the LetsEncrypt certificate.
On my windows PC's, when I browse to a website that is blocked by a web category, i'm redirected to the FQDN above and correctly see the blocked page without any certificate warnings.
On my IOS devices when attempting the same as above via the same firewall rule and web filter policy they are blocked however receive a certificate warning and the certificate that is presented is the Firewalls original SecurityAppliance certificate, not the LetsEncrypt certificate?
I am trying to understand why the difference in behavior when using the same rules/filters? My goal is to have IOS devices redirected to the block page however have the LetsEncrypt certificate used instead because that is trusted by all devices without me having to push to devices manually. When visitors etc come to my house and use my WiFi, I know they will all most likely natively trust the LetsEncrypt cert so rather that be used so they see the blocked page without manual intervention.
I hope I've explained that ok and maybe i'm missing something obvious?
Thanks!
Added TAGs
[edited by: Erick Jan at 2:04 AM (GMT -8) on 30 Dec 2024]