This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to exclude a device from web filter?

I read it somewhere but can't seem to locate it again.

I have a ubuntu server that isn't able to receive a kernel upgrade because the web filter isn't letting it download it packages.

How can I exclude just that machine from the web filtering policies I have set in place? As soon as I turn of web filtering it updates just fine.



This thread was automatically locked due to age.
Parents
  • Web Protection - Filtering Options U may add a exeption for this host or if U are using the transparent mode U may add the host 2 the "Transparent Mode Skiplist" (Misc)
  • In the add exception list I only see a way to add user/group so am I missing something to add a device/host? Is this option to add a host removed because I am running transparent mode?
    I and running in "transparent mode" but does it matter if was running in "full transparent mode", I added the device/host to the "transparent mode skip list" but I still want to know if I'm missing something in that exception list that I should be seeing.
    Also there are two spots to place hosts/nets in the transparent mode skip one for sources and one for destinations. Can you define what/why each of those would be used or reference me to a manual?
  • You will want to unmark /dev/nul's post as the solution if you want to continue working on this.

    Please show a line from the Web Filtering log file where the desired download was blocked.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • You will want to unmark /dev/nul's post as the solution if you want to continue working on this.

    Please show a line from the Web Filtering log file where the desired download was blocked.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
  • The web filter was only blocking some of the package updates not all...

    Would it be better to add that domain in the default action policy would be to add it to the allow list like this??

    That way the server can still have its traffic filtered, however this is a file syncing server (I host Seafile [similar to ownCloud but better in my opinion] on my server rather than use dropbox or etc.) does that matter any?

    What would be the best practice for this type of device?

    Its a web server (for Seafile web GUI), mail server, SMB file server, Plex server, Unifi Server.