Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 1 subscriber
  • Views 9578 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Web Protection blocks install of Endpoint Protection

gzartman
I've setup mostly default web protection using transparent proxy with SSL scanning on Sophos UTM 9.2.  

I'm attempting to setup Endpoint Protection on windows clients, but the Web Protection filtering blocks registration of client machines during install of the Sophos Endpoint application on the clients.   I shut off Web Protection and the client machine install works fine and the client shows up in the endpoint protection dialog in the UTM.  

However, as soon as I turn Web Protection back on, the Status of the client shows as offline.

Is there an exception I need to add to Web Protection so that Endpoint Projection will work properly on Windows clients?   The default exception titled "Sophos LiveConnect [Allow endpoints to connect to Sophos LiveConnect]"  doesn't seem to be working.

Thanks,

Greg


This thread was automatically locked due to age.
Parents
  • 0
    Hi, Chris, and welcome to the User BB!

    I modified the Regular Expressions in the Sophos LiveConnect Exception by removing the "/" at the end. [...]

    Can anyone else confirm this is a bug?

    Great catch!  Since [A-Za-z0-9.-]* includes -, I also would change ^https?://[A-Za-z0-9.]*-wdx-[A-Za-z0-9.-]*\.broker\.sophos\.com to
    ^https?://[A-Za-z0-9.-]*wdx[A-Za-z0-9.-]*\.broker\.sophos\.com

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    Hi, Chris, and welcome to the User BB!

    I modified the Regular Expressions in the Sophos LiveConnect Exception by removing the "/" at the end. [...]

    Can anyone else confirm this is a bug?

    Great catch!  Since [A-Za-z0-9.-]* includes -, I also would change ^https?://[A-Za-z0-9.]*-wdx-[A-Za-z0-9.-]*\.broker\.sophos\.com to
    ^https?://[A-Za-z0-9.-]*wdx[A-Za-z0-9.-]*\.broker\.sophos\.com

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Unfiltered HTML