This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Anybody figured rules/exceptions for Sophos CLEAN product on UTM w firmware 9.3 or greater?

Its great the Sophos broudht on the new Sophos Clean that brings ability to search and destroy hard to find rootkits and worms, but the online 'SCAN' for unknown files will  not pass the UTM.   I am using Web Filtering and IPS, but cant find anything in the logs for the related IP of the workstation.  The SCAN just says it cant connect.

It would sure be nice when you guys bring out a shiney new product if you could list what ports, etc has to be allowed in the SG and XG boxes.  There is a listing for addresses showing 4 listing, which has been added... but still no joy......

Thanks!



This thread was automatically locked due to age.
  • Stafford, You didn't see anything in the Firewall log?

    Say the IP is 172.17.1.101, you can see all of the lines with that in all of today's logs by running grep '"172\.17\.1\.101" /var/log/* - any luck with that?

    Cheers - Bob

    2016-08-18: PS This requires logging in at the command line.  If there are too many lines generated by this command, use grep '"172\.17\.1\.101" /var/log/* |more instead.

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA