Good morning everyone,
We have a Enterprise guest network (hotspot) setup in a separate zone. We used to filter all request in the guest network to the internet by using a transparent proxy profile. Recently we did an audit on the guest network and found that the proxy service would actually allow web traffic from the guest network and allow those web requests into our internal network. To mitigate this risk we disabled filtering on the guest network. However this opens up a compliance issue for the guest network (we use voucher codes so it's still minimal). But still.
Additionally, we have been having issues filtering the guest network since updating to 9.3. So the proxy logs oddly don't always even show the request. Clearly the firewall doesn't show the request as it's hitting the proxy service. As stated earlier, once we disable the transparent profile on the guest network we can see the requests attempting to come internal but are properly blocked at the firewall level.
Can anyone else confirm this?
Running a 425 @ 9.305-4
[:S]
This thread was automatically locked due to age.
