Hi everyone,
From Monday the 19th of December, I've got an issue with my web filtering.
It's configured to filter some categories, like porn, violence .... BUT the pages are not blocked.
I have a cluster of SG430 (active/passive) with 9.713-19 update.
Here is my configuration :
ALL_PRIVE = ALL PRIVATE NETWORKS,
POLITIQUE PAR DEFAUT = DEFAULT POLICY,.
Also the websites listed here are not blocked.
When I test an address of a pron website with source IP from one of my PRIVATE NETWORK, it says that the website is allowed and the
This type of website should not be allowed.
I see in the live log, that the traffic is saw by the proxy.
I have already try to disable and enable the Web protection with the switch in the web interface, and also do the proxy restart command in SSH.
I have checked 10 times the Skiplist, maybe there is a mistake in it, but for me, there is not.
It"s like the UTM doen't can't categorized the URLs.
Hi Jean-Charles SIEGEL ,
Thanks for reaching out to Sophos and hope you are well. This current version of UTM9 (9.713) might be affected by an issue in Web Filtering and should be fixed in UTM9 9.714
I can see on your provided details:
-Web Proxy not categorizing YouPorn on Policy Test
-The supposed to be blocked site is still allowed by web proxy
In the meantime you may try running this command via SSH access: cc set http modulepath ‘<DEFAULT>’
Kindly let us know how it goes. Thanks for your time and patience and Thank you for choosing Sophos
Cheers,
Raphael AlganesCommunity Support Engineer | Sophos Technical SupportSophos Support Videos | Product Documentation | @SophosSupport | Sign up for SMS AlertsIf a post solves your question use the 'Verify Answer' link.
When I perform the operation as root cc set http modulepath "<DEFAULT>' I get an error
bash: DEFAULT: No such file or directory
I have the same return as alan weir :
Hi,
To run the Confd_client you can run “cc” from any location while you are logged in as root then then to view the contents of the current settings directory press <TAB> button twice
To verify you are already in confd_client console should have like 127.0.0.1 Main>
Hope this helps. Many thanks team for your time and patience and Thank you for choosing Sophos
I'm not sure what I am supposed to do
Kindly try the same syntax while on root privilege cc set http modulepath ‘<DEFAULT>’
Thank you for your time and patience and Thank you for choosing Sophos
By root you mean typing "su" then entering the root password?
Typing the commands like
sudo cc set http modulepath ‘<DEFAULT>’
sudo su cc set http modulepath ‘<DEFAULT>’
All give the same error.
I was doing it incorrectly. First off I was not actually running the command as root as I thought I was. I had to type "su root" or "su - root" to actually gain root privilege.
Second, I was copying and pasting the command. It wasn't until I typed it manually that it appeared to work...copying and pasting the command into putty was giving me an error for some reason. Maybe copy and paste is not a good idea.
So in order for it to work:
1. "su root" or "su - root"
2. type the command manually instead of copy/paste:
cc set http modulepath ‘<DEFAULT>’
It did not appear to do anything. After trying the command again, "su root" does not gain root privilege, only "su - root" appears to work where the command is successful
But the web filter still appears to be blocking only "uncategorized" sites. All other sites still have the action="pass"
Good day and hope you are well.
Kindlyrestart httpproxy by using:
/var/mdw/scripts/httpproxy restart
Kindly let us know how it goes. Thanks for your time and patience and thank you for choosing Sophos