Web filter Double NAT

Diego,

XG is able to reach the internet because rules for him are already opened. You do not need to create rules.
I have the same installation as yours at home and you only need to create rules to allow traffic from internal to wan zone (network/user rules).

Good morning,

Users within the network browse perfectly,

The problem is that the web categorization does not work.

All web to appear as Uncategorized.

The problem is that XG query to the database categorization but the answer is not able to route the call to XG and brand as uncategorized.

If I create a category by hand with a web if recognizing it.

How do I solve it?

a greeting

This is strange! Did you open all port on your router? All traffic is forwarded to your XG WAN Ip address?

Does the URL category lookup works under System > Diagnostics ?

Good afternoon

First of all thanks for your answers

Currently the wan ip of the XG is placed in the DMZ router that lets me set.

There is no rule no port forwarding Port Triggering.

Should I create one?

You have said that you have configured the same in your home, you can tell me the router configuration?

The router that I have no bridge mode

a greeting

Good afternoon

First of all thanks for your answers

Currently the wan ip of the XG is placed in the DMZ router that lets me set.

There is no rule no port forwarding Port Triggering.

Should I create one?

You have said that you have configured the same in your home, you can tell me the router configuration?

The router that I have no bridge mode

a greeting

Diego,

on my network the router at my home cannot be changed to bridge for me too. What I did on my router is that forward all requests to internal IP (XG WAN IP) and nothing else. On the other side, router should allow all traffic from its lan to WAN. All the traffic must be filtered by XG (so you have filters in place and log either)
.

Nothing else. XG should be able to reach the 443 and 80 and sends URL categorization to Sophos websites. If it does not work, try a tcpdump for your XG interface and port 443 or 80 and see what is happening when you try to reach a website or use url lookup inside XG UI.

Good morning,

WAN ip XG is in the DMZ, depending on the configuration of router redirects all ports to the IP (10.0.0.1)

XG is set to dns those of Google (8.8.8.8, 8.8.4.4)

Customers within the lan (192.168.0.0/24) have set the ip by DHCP (XG) with dns pointed to 192.168.0.1 (Internal XG IP)

I do not understand it does not work. Apparently I have everything configured properly.

Is there any error in this configuration?

All webs are marked as Uncategorized

Thank you

Diego,

can you post the output of this file when you try the url lookup from XG Web Interface?

tail -f /var/tslog/tomcat.log | grep "url_to_test(for example www.google.co.uk)"

Hello Luk

Sorry for my ignorance but where I do url lookup (/var/tslog/tomcat.log tail -f | grep "www.google.co.uk"

You have any documentation.

I want to send you the result but not how to do it

Thank you

Diego,

connect to XG console, choose option 5 and then 3. Type the command and post the output.

Good afternoon,

After you set access where I have written /var/tslog/tomcat.log tail -f | grep "www.google.co.uk" and has not appeared nothing.

If you need to remove some files, or something more direct me as

Thank you