I have a customer environment where the server has multiple NICs and IP addresses. The client stores very large video files on the server. Each recording studio has a dedicated 10GBps LAN link to the server and each is on a 172.19.x.x/24 Class B internal…

Hi is there a managed exclusion List for the Endpoint SSL/TLS Decryption module? I only found the possibility to add custom URLs as exclusion. We use Sophos Firewall as well and there is the URL Group " Managed TLS exclusion list" with a bunch of…

Hallo, ich möchte eine bestimmte URL in unserer Endpoint Protektion sperren. Unter der Endpoint Protection - Website-Management habe ich die URL hinterlegt und in den Richtlinien als blockiert hinterlegt. Diese funktioniert auch bei Domains wie…

Servus Community, is there a current list or white paper listing all currently filtered translators who are blocked by default in End Point Protection with the Web Filter 'Translators & Proxies'? I'm particularly interested in whether the website of…

Sophos endpoint leads to no internet connection through wifi. This behaviour was noticed only on one pc in the organization at the moment. This device gets a correct IP address in DHCP mode, but is not able to navigate anywhere. When trying to ping…

Hi, When SSL/TLS protection is activated from Sophos Central > Endpoint Protection > Base Policy, I encounter problems to access Public Administration/bank/taxes sites. I know that it's because it is not possible to decrypt their traffic. So I use exceptions…

A strange thing happened to us on Endpoint, which was in a locked office, in one second the endpoint blocked at least 10 pages of inappropriate tip as Adult/Sexually Explicit. Since I am sure that no one was sitting at the endpoint and no one could…

I saw the popup the other day announcing the new feature in Threat Protection to block QUIC to make sure that everything goes through Web Control and Threat Control correctly. I clicked the "Read more" link which took me to Threat Protection Policy…

Hi, due to some strange German law, there must be some wistle-blowing URL to be excluded from decrypting but also from logging. is that possible with Sophos Endpoint / Central? What about Datalake? Though it's a nightmare in terms of security…

Hey Sophos, you managed to bring one of our websites out of production with your new NTP64 component. Since installed, endpoints will not load it or only parts of it. Intercept-X kills the connection during TLS handshake. HTTPS Decryption enabled…

Hi I have ssl inspection in intercept x advanced with xdr/ I have a problem surfing with firefox. the message is: Software is Preventing Firefox From Safely Connecting to This Site mxtoolbox.com is most likely a safe site, but a secure connection…

We have several clients accessing this website. The message in Sophos: The root cause tried to access a URL known to be associated with malware. URL: rinozuid.anewspring.nl/jsonrpc Is this website actually a risk or is this a false…

Hello there, Is there any tool to lookup URLs and find their classified categories for use with Central Endpoint WebControl? The categories don't match up with SFOS categories and the explanation of the categories, while verbose doesn't provide…

Hi, we can see an endpoint and user as "huge" malware downloader in "Top Malware Downladers" report: https://central.sophos.com/manage/endpoint/reports/web-control/malware/create But I can't find a single event or alert or anything linked to specific…

Hi everyone, i 'm having trouble using the certificates we have installed in browsers to authenticate to some web services. The endpoint is blocking usage, making usage impossible. Has anyone gone through something similar?

I am testing the Sophos Intercept X Endpoint Beta and noticed the settings In Threat Protection for SSL/TLS inspection. If I already have HTTPS scanning enabled in the firewall rule and the CA is deployed on the endpoint into the trusted certificate…

Hello I will have been looking at the Sophos Endpoint panel for around 3-4 hours for a web page that I have included in the website management list, to say that I have tried others and it does enable them, but in the case of the one indicated there…

We used Sophos Central Endpoint and edited the web control policys. So for example we have set the category Society & Culture to warn. But in the users browser the website opens without a warning message. If we set the same category to block, in the user…

So I got a group of clients with Sophos Intercept X Advanced with XDR installed. Is there a way to block surfing for those clients via a policy, except for 1-2x Websites? Cause with the "Web Control" -> "Let me specify" -> "Block everything" it doesn…

Hello, is it possible to whitelist an URL via Web Management like https://google.com/recaptcha/ but block https://google.com or is there an other way do this? Thank you your answers. Dirk

We could not download Adobe creative cloud. It just did not work. No message by the endpoint at all. It works when disabling Web Protection in the Endoint. There is one block message in the endpoint event log for a totally weird Adobe Download URL…

Hi Team, It's been 5+ years since we asked this, and we would like to ask if we can now customize messages for blocking websites in Sophos central.

Hello everyone, yesterday I saw for the first time an entry at "Web Threats Blocked". It shows me that a "High Risk" website was blocked. But sadly in this overview is not date and no information what website exactly was blocked. Is there an option…

Sophos no deja entrar a mis usuario a una pagina de gobierno ( egob.finanzas.cdmx.gob.mx/.../a ) porque una aplicación que usa la categoriza como "Mal/HTMLGen-A". Ya puse la pagina en una whitelist y nada.

Is anyone else noticing issues with SSL inspection recently? we've just had the new core agent 2023.1.0.73 deployed on our estate and seeing a vast amount of websites being blocked 'the encryption used by this server hosting the URL is insecure' downgrading…