What is Proxied, Via: HTTP/1.1 sophos.http.proxy:3128

Question

I am troubleshooting the streaming issue with HTTP malware scanning enabled and noticed this which I do not see in UTM 9. Still need to keep HTTP malware checks off when using XG. Testing before I switch from UTM 9 to XG. On UTM 9 I do not see the proxy listed on sites I go to such as http://test-ipv6.com/ . I see the setting in XG however I have it unchecked under Routing - Upstream Proxy (both IP settings off). What component of XG uses this proxy? Does this mean all traffic from my LAN goes through a XG host before the Internet destination? Can it be disabled? 
 XG will be a good move forward once the bugs are minimized but still has some issues to deal with. Any info would be good. Thanks.

lferrara · Answer

Mike, 
 the upstream proxy feature is used when the XG is behind another proxy that may require authentication (i think it is not your case). 
 On the forum you will find other Streaming Threads and possible workaround. Have a look at this one: 
 https://community.sophos.com/products/xg-firewall/f/129/t/11088 
 XG works as transparent proxy. You can use Policy rule and "Allow all" or not applying IPS/Web/Application filter in order to surf on internet without protection.

vishaljpatel · Answer

Hi Mike, 
 As when we apply any web filter policy or any http/s scanning or both then XG works as an transparent proxy. 
 If you do not want to show that "this is the proxied connection" then you can disable it via below commands. By default it is enabled. 
 console> set http_proxy add_via_header off 
 Hope this answer will help you. [:)] 
 Regards, 
 Vishal Patel