Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 6 subscribers
  • Views 1351 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Web Prtotection UTM 9.601-5

shadowfly

To me it looks somerhing is not in right order with Web Pretection any mode.

I can reach from WLAN any LAN + DMZ address with disabled firewall rules any-websurfing-dmz or LAN

Any internal or dmz webpage with port 80 or 443 can be reached from all wireless networks.

Give it a try use your tablet from your wireless network and trying to reach one of your dmz or internal website port 80 or 443

with all firewall rules disabled and no exceptions in your browser.



This thread was automatically locked due to age.
  • 0

    proxy (standard&transparent) allowing HTTP(s) to any destination if an allowed source hit them.

    That#s not new.

    For transparent proxy you can use the transparent-mode-skiplist with LAN/DMZ as destination network and cleared checkbox "Allow HTTP/S traffic for listed hosts/nets"

    For standard more it is less simple ...


    Dirk

    Systema Gesellschaft für angewandte Datentechnik mbH  // Sophos Platinum Partner
    Sophos Solution Partner since 2003
    If a post solves your question, click the 'Verify Answer' link at this post.

  • 0

    You might be interested in a document I maintain that I make available to members of the UTM Community, "Configure HTTP Proxy for a Network of Guests."  If you would like me to send you this document, PM me your email address. For our German-speaking members, I also maintain a version auf Deutsch initially translated by fellow member hallowach when he and I did a major revision in 2013.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML