This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Deny google webstore

Hello,

we have a UTM9, and can't deny the acess to the google webstore...

It's possible ?

thanks



This thread was automatically locked due to age.
  • Is this a question about blocking using firewall rules or one that should be moved to the forum with Web Filtering?

    If Web Filtering, show a line from your Web Filtering log where a webstore access is passed.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • General process:

    1. Figure out how the client connects to the resource that you want to block.   Need target FQDNs, IP address(es), and ports.   This requires logging your traffic, and knowing whether the client device is subject to Standard Web, Transparent Web, Both, or Neither.   By default, Firewall Rules only log blocked traffic, but you can log allowed traffic as well.
    2. In the case of Chrome talking to Google, the traffic is probably running on UDP 443 (QUIC).   By default, this will evade your web filter.   Add a firewall rule to block UDP 443 so that it is forced to use TCP 443 and Webfilter.