"OneDrive File Download" and "OneDrive File Upload" Application Signatures are not working as expected on Sophos XGS 6500(SFOS 19.5.4 MR-4-Build718). I need to separate the OneDrive web application rules into "Download" and "Upload". However, it does…
Hey everyone,
today i noticed our Windows DCs want to communicate with Windows Clients behind a RED Device, where SFOS is recognizing it as a Freegate Proxy Application and blocks it
Src IP = Win DC
Dst IP = Win Client behind RED
Seems to be…
Hi
I have an issue whereby users cannot send images or documents on whatsapp mobile app. We have policy rules for social restriction but whatsapp i alloewd but seems not to be working
Hello,
it seems I have missed something, on all my firewalls "cloud application list" is just empty.
Application control is being populated but the cloud part has nothing in list or graphs.
Would anyone be so kind to advise?
All are XGS 107 with…
Hi Sophos,
I can't get the Application Control policy to block Proxy / VPN Tools.
I've tried to edit the Base Policy as well as create a new policy and neither seem to work. See the attached image. I have tried selecting all VPN / Proxt Tool objects…
Hello Community,
I am facing a challenge in getting a rule to block social media and video hosting to work. I created an application filter and web policy to block all social media and video hosting. Created the rule and placed it at the top. It blocked…
Hi,
We've recently moved to a hybrid setup for our Windows devices (local active and Intune). Many devices have successfully fully setup but most have not. They are registered with Intune and show compliance, however we have found that those not working…
Cannot send Viber attachment on desktop version but successful on mobile version. Just migrated from XG210 to XGS2100 with latest firmware SFOS 20.0.1 MR-1 Build 342.
No problem in fresh setup on XGS2100 both desktop and mobile version on Viber.
Thank…
Sophos implements many layers of security, including control policies configurable for your Endpoints protected by Intercept X Advanced. One such control policy that is vital to give attention to is Application Control. The following article is not a…
Hello All,
I have added the "Block high risk (Risk level 4 and 5) apps" to the " Identify and control applications (App control)" part of Lan-To-Wan Firewall rule.
With this in the La-To-Wan firewall rule, I can not connect to a remote computer, using…
Hello,
Im doing some POC to chose the best firewall that have a good NGIPS.
The default IPS profile was not able to block Impacket, psexec or any other Windows RCE.
How can i made the IPS policy more strict for a LAN to LAN policy.
What is the best way to block users from using any version of Team viewer and Any desk and what ports have you used if we need to block ports? How to do that on Sophos?
Hello,
Do you have any recommendations for classifying financial services/banks and bank websites in the Application object?
I need to use SDWAN for this type of service, but generally access to these sites are classified as "Secure Socket Layer…
Hello,
I have recently see my officesetup.exe installation blocked when I activated the app-filter based on this policy "Block generally unwanted apps" on my LAN TO WAN firewall rule.
This blocked was manifest juste after launch the officesetup.exe…
I noticed in The Logs from our Router that there is 1.25GB Upload on STUN and about 850MB Download STUN. Could someone please tell me what that could, I say could be ? Could it be video chatting over WhatsAPP OR FACETIME ?.
Hello Community,
Is there a way to create a "bypass" for Application Control in Sophos Firewall that is applied to a client IP address? In the old UTM 9 interface, I used to be able to assign hosts to bypass lists, which would bypass all Application…
Hi, the following app IRFANVIEW is part of the app control list but when i select for it to be blocked, the endpoint still allows the application.
can this be looked into thank you.
Hi,
I am setting up application control with Sophos Central, and ran into a few problems that have clumsy workarounds, but one that I don't know how to workaround is this.
Sophos Application Control only looks at the currently logged on user to determine…
Ok unless I am missing something, you: Create an Application Filter, set it to Block. But in the GUI overview it shows default action is Allow. You have to edit the policy to see it's set to block. Poor design and visually confusing. Create a Firewall…
I have two FQDN hosts : Instagram (*.instagram.com) and Facebook (*.facebook.com). These two FQDN hosts are added in an FQDN host group named Social Media.
A rule in "Traffic to WAN" is configured for LAN to WAN that rejects this specific FQDN Host…
Hello everyone, I was trying to understand how to make a report of who uses a specific application like Anydesk. In the report I find various categories but I don't understand how to specify the report for a specific application.
Thank you