Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 39 subscribers
  • Views 9839 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Malware scanning cripples and block harmless websites

blublub

Hi


I have pretty loose policies for surfing the web (allow all from lan to wan, no app control, web filter only blocks phishing) and malware scanning for that policy is enabled for HTTP and FTP. It is disabled for HTTPS.

Engine is Sophos but I have also tried Avira - males no difference

The problem is that the malware scanning makes browsing pretty much impossible - pictures do not load or just load about 50% or so. Furthermore webcarts are detected to have malicious code in a file so that shopping is impossible.


Is that the way it is supposed to be?  Because if that is the case it renders malware scanning obsolete because security is so tight that normal web browsing is just not possible

Example websites:

amazon.com or de

welt.de



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to blublub

    Ok

    After a reboot the issue with the only half loaded images on my "test web site" (welt.de) is gone, but on amazon.de still the same (missing pictures and site won't load to the end)


    The Web-Filter "home" blocks the category phishing and spam - so I assume everything else should be passed/marked as "allow" - correct?

    Part screen shot of the amazon page with missing images:

    And as soon as I disable "malware scanning for HTTP" everything is back to normal.

  • 0 in reply to blublub

    Blublub,

    on service remove "Any" and add only HTTP and HTTPS. Also As web filter policy, did you add it inside the policy? The screenshot does not show it. :-(

    Thanks.

  • 0 in reply to lferrara

    Hi,

    I will test that when it occurs again. For an unknown reason it is working correctly for now, the only thing I changed was to clear browser caches (again).

    I will keep an eye on it.

Unfiltered HTML